{
    "mode": "man",
    "parameter": "openssl-storeutl",
    "section": "1",
    "url": "https://www.chedong.com/phpMan.php/man/openssl-storeutl/1/json",
    "generated": "2026-06-15T23:00:15Z",
    "synopsis": "openssl storeutl [-help] [-out file] [-noout] [-passin arg] [-text arg] [-r] [-certs] [-keys]\n[-crls] [-subject arg] [-issuer arg] [-serial arg] [-alias arg] [-fingerprint arg] [-digest]\n[-engine id] [-provider name] [-provider-path path] [-propquery propq] uri ...",
    "sections": {
        "NAME": {
            "content": "openssl-storeutl - STORE command\n",
            "subsections": []
        },
        "SYNOPSIS": {
            "content": "openssl storeutl [-help] [-out file] [-noout] [-passin arg] [-text arg] [-r] [-certs] [-keys]\n[-crls] [-subject arg] [-issuer arg] [-serial arg] [-alias arg] [-fingerprint arg] [-digest]\n[-engine id] [-provider name] [-provider-path path] [-propquery propq] uri ...\n",
            "subsections": []
        },
        "DESCRIPTION": {
            "content": "This command can be used to display the contents (after decryption as the case may be)\nfetched from the given URIs.\n",
            "subsections": []
        },
        "OPTIONS": {
            "content": "",
            "subsections": [
                {
                    "name": "-help",
                    "content": "Print out a usage message.\n\n-out filename\nspecifies the output filename to write to or standard output by default.\n"
                },
                {
                    "name": "-noout",
                    "content": "this option prevents output of the PEM data.\n\n-passin arg\nthe key password source. For more information about the format of arg see\nopenssl-passphrase-options(1).\n"
                },
                {
                    "name": "-text",
                    "content": "Prints out the objects in text form, similarly to the -text output from openssl-x509(1),\nopenssl-pkey(1), etc.\n\n-r  Fetch objects recursively when possible.\n"
                },
                {
                    "name": "-certs",
                    "content": ""
                },
                {
                    "name": "-keys",
                    "content": ""
                },
                {
                    "name": "-crls",
                    "content": "Only select the certificates, keys or CRLs from the given URI.  However, if this URI\nwould return a set of names (URIs), those are always returned.\n\n-subject arg\nSearch for an object having the subject name arg.\n\nThe arg must be formatted as \"/type0=value0/type1=value1/type2=...\".  Special characters\nmay be escaped by \"\\\" (backslash), whitespace is retained.  Empty values are permitted\nbut are ignored for the search.  That is, a search with an empty value will have the same\neffect as not specifying the type at all.  Giving a single \"/\" will lead to an empty\nsequence of RDNs (a NULL-DN).  Multi-valued RDNs can be formed by placing a \"+\" character\ninstead of a \"/\" between the AttributeValueAssertions (AVAs) that specify the members of\nthe set.\n\nExample:\n\n\"/DC=org/DC=OpenSSL/DC=users/UID=123456+CN=John Doe\"\n\n-issuer arg\n-serial arg\nSearch for an object having the given issuer name and serial number.  These two options\nmust be used together.  The issuer arg must be formatted as\n\"/type0=value0/type1=value1/type2=...\", characters may be escaped by \\ (backslash), no\nspaces are skipped.  The serial arg may be specified as a decimal value or a hex value if\npreceded by \"0x\".\n\n-alias arg\nSearch for an object having the given alias.\n\n-fingerprint arg\nSearch for an object having the given fingerprint.\n"
                },
                {
                    "name": "-digest",
                    "content": "The digest that was used to compute the fingerprint given with -fingerprint.\n\n-engine id\nSee \"Engine Options\" in openssl(1).  This option is deprecated.\n\n-provider name\n-provider-path path\n-propquery propq\nSee \"Provider Options\" in openssl(1), provider(7), and property(7).\n"
                }
            ]
        },
        "SEE ALSO": {
            "content": "openssl(1)\n",
            "subsections": []
        },
        "HISTORY": {
            "content": "This command was added in OpenSSL 1.1.1.\n\nThe -engine option was deprecated in OpenSSL 3.0.\n",
            "subsections": []
        },
        "COPYRIGHT": {
            "content": "Copyright 2016-2020 The OpenSSL Project Authors. All Rights Reserved.\n\nLicensed under the Apache License 2.0 (the \"License\").  You may not use this file except in\ncompliance with the License.  You can obtain a copy in the file LICENSE in the source\ndistribution or at <https://www.openssl.org/source/license.html>.\n\n3.0.2                                       2026-06-02                     OPENSSL-STOREUTL(1SSL)",
            "subsections": []
        }
    },
    "summary": "openssl-storeutl - STORE command",
    "flags": [
        {
            "flag": "",
            "long": null,
            "arg": null,
            "description": "Print out a usage message. -out filename specifies the output filename to write to or standard output by default."
        },
        {
            "flag": "",
            "long": null,
            "arg": null,
            "description": "this option prevents output of the PEM data. -passin arg the key password source. For more information about the format of arg see openssl-passphrase-options(1)."
        },
        {
            "flag": "",
            "long": null,
            "arg": null,
            "description": "Prints out the objects in text form, similarly to the -text output from openssl-x509(1), openssl-pkey(1), etc. -r Fetch objects recursively when possible."
        },
        {
            "flag": "",
            "long": null,
            "arg": null,
            "description": ""
        },
        {
            "flag": "",
            "long": null,
            "arg": null,
            "description": ""
        },
        {
            "flag": "",
            "long": null,
            "arg": null,
            "description": "Only select the certificates, keys or CRLs from the given URI. However, if this URI would return a set of names (URIs), those are always returned. -subject arg Search for an object having the subject name arg. The arg must be formatted as \"/type0=value0/type1=value1/type2=...\". Special characters may be escaped by \"\\\" (backslash), whitespace is retained. Empty values are permitted but are ignored for the search. That is, a search with an empty value will have the same effect as not specifying the type at all. Giving a single \"/\" will lead to an empty sequence of RDNs (a NULL-DN). Multi-valued RDNs can be formed by placing a \"+\" character instead of a \"/\" between the AttributeValueAssertions (AVAs) that specify the members of the set. Example: \"/DC=org/DC=OpenSSL/DC=users/UID=123456+CN=John Doe\" -issuer arg -serial arg Search for an object having the given issuer name and serial number. These two options must be used together. The issuer arg must be formatted as \"/type0=value0/type1=value1/type2=...\", characters may be escaped by \\ (backslash), no spaces are skipped. The serial arg may be specified as a decimal value or a hex value if preceded by \"0x\". -alias arg Search for an object having the given alias. -fingerprint arg Search for an object having the given fingerprint."
        },
        {
            "flag": "",
            "long": null,
            "arg": null,
            "description": "The digest that was used to compute the fingerprint given with -fingerprint. -engine id See \"Engine Options\" in openssl(1). This option is deprecated. -provider name -provider-path path -propquery propq See \"Provider Options\" in openssl(1), provider(7), and property(7)."
        }
    ],
    "examples": [],
    "see_also": [
        {
            "name": "openssl",
            "section": "1",
            "url": "https://www.chedong.com/phpMan.php/man/openssl/1/json"
        }
    ]
}