Topic: Extracting Privat Key from PEM File (Read 429 times)

I'm not sure why you even want a .pem file? No wallet in existence uses .pem files... and trying to extract keys from them is quite difficult and time consuming.

What are you actually trying to achieve? The mass extraction of keys from a wallet.dat without requiring Bitcoin Core and/or the password?

If you're just wanting to extract keys without having to load the wallet.dat into Bitcoin Core, then PyWallet is probably the best utility for just dumping keys straight from a wallet.dat (it even works with encrypted wallets). If you're trying to dump keys from encrypted wallet.dat files without knowing the password... well, that's just impossible.

---

With regards to PyWallet, I have a forked version of PyWallet that suppresses all the "KeyMeta" warnings (caused by updates to wallet.dat format since PyWallet was last updated) available here: https://github.com/HardCorePawn/pywallet

So, instead of hundreds of lines of:
being output, they are just ignored... It is non-essential info if you're just after private keys etc anyway.

NOTE: Python 2 is required, will not work with Python 3.

Usage to dump the wallet:

for instance, if your wallet.dat was in E:\bitcoin, and encrypted with passphrase 'abc123', you'd use something like:

Hoi, because this is about btc, i have a wallet.dat, thought this private key came out of this mywallet.pfx from op,
strangly bc_key works with the wallet.dat
** Usage:

./bc_key BITCOIN_ADDRESS /path/to/wallet.dat
./bc_key ALL /path/to/wallet.dat
./bc_key EVERYTHING /path/to/wallet.dat

and op got his things out the pfx. as you said to have used it on an
address from a wallet?
But when I ran bc_key with an address in some wallet file, I got this output:

-----BEGIN EC PARAMETERS-----
short ASCII string                   for me here was btc address, but the thing is bc_key does work only with one wallet.dat i have unencrypted, that gives me the pem encrypted key back.
-----END EC PARAMETERS-----
-----BEGIN EC PRIVATE KEY-----
really long string of ASCII text that looks like one in OP       same here the encrypted key
-----END EC PRIVATE KEY-----

this make me think that this is a way around the loading the wallet inside the btc core client and then doing dumpwallet one by one, as op did one.
this above does all that in a jiffy with all addresses from bc_key back to pem and from there back to your keys.
so every wallet is its own pem file.
the only pitty is that i dont know about is how to have a pem file with all the pem encrypted keys to get trough bc_key at one go.
seems it does not accept all those line at once without editing the result of bc_key, first of all the address is in the way, then one pem key it works and stops.

Honestly, I've never seen a bitcoin wallet that uses the .pfx format... I'm not entirely sure that the OP even has a bitcoin private key. They seem to think they exported it from a mywallet.pfx file to .pem.

But in all the research I have done, I've only found reference to bitcoin and .pfx in a "presentation" here: https://github.com/Dreammaster13/blockchain-for-devs-book/blob/master/content/part-1-blockchain-networks-concepts/wallets/wallet-apis-and-libraries/wallets-apis-and-libraries.md#other-wallet-formats

Where it is mentioned as an "other" type of wallet/keystore


Do you have a wallet.dat or a .pfx file? and what makes you think that the .pfx is a wallet file?

Hi thanks for the help HCP,
this wallet was is not encrypted that is why i asked,
i know how to import it, so that was not an issue,
the OP posted a pfx. wallet format. how to get a hold of
that with btc.

bc_key doesn't work with "encrypted" wallet.dat files...


A standard "wallet.dat" (from Bitcoin Core) is not in a format that openssl can read/understand. A wallet.dat is a BerkeleyDB binary file... and if the wallet.dat has a password  on it, then the private key data will be encrypted.

If you have a wallet.dat, the best way to recover data from it is by opening a copy of the wallet.dat with a fully synced Bitcoin Core... attempting to open it with other utilities may damage the file or just not work.

i get this error with bc_key, you might know why,

read EC key
unable to load Key
140245723776704:error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib.c:707:Expecting: ANY PRIVATE KEY

and this with ssl
openssl pkcs12 -in mywallet.dat -nocerts -out privatekey.pem -nodes
140391597541056:error:0D0680A8:asn1 encoding routines:ASN1_CHECK_TLEN:wrong tag:tasn_dec.c:1200:
140391597541056:error:0D07803A:asn1 encoding routines:ASN1_ITEM_EX_D2I:nested asn1 error:tasn_dec.c:374:Type=PKCS12

hi there arkadas,
do you know if you can get to enter the password with bc_key for the wallet.dat file.
thanks

quoted all dang,
here's the link: https://github.com/matja/bitcoin-tool
to say that matja btc tool does the same true one command and batch format like several keys at once. gl.

You are able to use a sample private key created from bitaddress.org if all you want to do is convert it from PEM and back again. https://www.bitaddress.org/bitaddress.org-v3.3.0-SHA256-dec17c07685e1870960903d8f58090475b25af946fe95a734f88408cef4aa194.html

---

PEM is an RSA private key file format. So you are trying to convert an RSA private key bytes to bitcoin private key bytes but this doesn't make sense at first because bitcoin private keys use elliptic curve cryptography, not RSA.

But when I ran bc_key with an address in some wallet file, I got this output:

-----BEGIN EC PARAMETERS-----
short ASCII string
-----END EC PARAMETERS-----
-----BEGIN EC PRIVATE KEY-----
really long string of ASCII text that looks like one in OP
-----END EC PRIVATE KEY-----

So what you did is convert the output of bc_key, an ECC private key, into an RSA public key. We should probably figure out how to get the private key bytes out of this ECC key first as it's most likely a valid bitcoin private key.

Just FYI, your code is Python 3 compatible only...

If you run that in Python2, it gives a really weird result as the str(checksum)[2:10] is only returning 6 chars instead of 8.

Instead of str() on the bytes object, you should probably use the .decode() method... so, a "better" solution might be:

That should work on both Python2 and Python3

I don't want to post my private Key online so anyone can take my BTC.  


Thx for this code with Python HCP. This was what I need.

This gives an cool formated output to see everthing bedder:

Hex-dump is the Private Key

I found a Code from https://gist.github.com/Jun-Wang-2018/3105e29e0d61ecf88530c092199371a7#file-bitcoin_from_private_key_to_wif-py to convert HEX to WIF:

I don't think you can... because the steps outlined in that post are for going from public key to address... not from the private key...

Also, it should be noted that (for the public key):
- http://blockexplorer.com/q/hashtoaddress no longer works... but you can use http://blockchain.info/q/hashtoaddress
- you only want the last 65 bytes from the output of the base64 -d command:


This will return the example BTC address: 1Hy9dexzNzjvQYkYy6zKRVZMU8k2j5vuPt


These commands only work on Linux... So you'll either need a Linux box, a Linux virtual machine, or you can even use "Windows Subsystem for Linux"...

---

---

As for your situation of having a private key .pem file...

Theoretically, you should probably be able to decode the private key from the .pem file output in a similar fashion... but you'd need to know exactly which parts of the Base64 encoded text were actually the hex private key (like how you only want the last 65 bytes of the "base64 -d" command above to get the public key from the .pem file.)

Looking at this post on StackExchange: https://bitcoin.stackexchange.com/questions/66594/signing-transaction-with-ssl-private-key-to-pem

We can see that if you can find the byte sequence: "30740201010420" in the decoded base64 output... then the next 32 bytes (64 chars) should be the HEX private key... from that stack exchange post, we can see the example hex private key they started with was:

And the privkey.pem is:


If we use Python... we can decode that and view the bytes in "hex":

From this we can see the decoded Base64 is:

We can see the sequence "30740201010420" right at the start (highlighted "Red")... so the next 32 bytes (64 chars) (highlighted "orange") should be the hex private key:

Giving us a hex private key of:

Which matches the HEX private key the example started with!


So, try base64 decoding your .pem file contents... and see if you can find the sequence "30740201010420"... if you can, the next 32 bytes (64 chars) should be the private key.

Let me know if you need any help.

From the old topic it's a PUBLIC key not a PRIVATE key. Why did you change it?

Hello there,

I have a problem with extracting an Privat Key from an old wallet (*.pfx).

In 2011 I convert a Wallet in this (OpenSSL PEM) format. In an old Post i can see the answer, but my programming skill is weak: https://bitcointalksearch.org/topic/50-btc-bounty-for-a-pem-public-key-to-bitcoin-address-convertor-2631

1. I use OpenSSL for receiving the Privat Key:
openssl pkcs12 -in mywallet.pfx -nocerts -out privatekey.pem -nodes

2. Open the *.pem (I used the public key from the Topic above   ):
-----BEGIN PRIVATE KEY-----
MIH1MIGuBgcqhkjOPQIBMIGiAgEBMCwGByqGSM49AQECIQD/////////////////
///////////////////+///8LzAGBAEABAEHBEEEeb5mfvncu6xVoGKVzocLBwKb
/NstzijZWfKBWxb4F5hIOtp3JqPEZV2k+/wOEQio/Re0SKaFVBmcR9CP+xDUuAIh
AP////////////////////66rtzmr0igO7/SXozQNkFBAgEBA0IABJJ6TBhmiWm4
Y1ACBVJVn0oyG9Ay5IzEZq8cPyrs1PERl963YQh5UrGOT0NodynfHswkz8bUpaJW
FsowR/l9wXc=
-----END PRIVATE KEY-----


How can I do that with CMD and Editor? Is this the right way to get the correct bitcoin address?

Thanks for help.