Cryptnox Docs

cryptnox-logo

GET MANUFACTURER CERTIFICATE Command

This command reads the Cryptnox card X509 certificate. This command should be used after each SELECT and before the OPEN SECURE CHANNEL command in order to :

  • Read Card SN, eventually to get the right pairing key associated – Read the card public key, to further check the ECDH card public key authenticity – Check if the card is genuine against Cryptnox public key



  def get_manufacturer_certificate():
      card.get_manufacturer_certificate()

  # For example:
  get_manufacturer_certificate()

Manufacturer Certificate in Application Protocol Data Unit (APDU) Components

The following table outlines the components of the Application Protocol Data Unit (APDU), including the Manufacturer Certificate.

Field

Description

Value

CLA

This field specifies the class of the instruction.

0x80

INS

This field specifies the particular command or operation that the smart card or secure element should execute.

0xF7

P1

First parameter of the instruction that specifies the details about the operation being requested.

0x00

P2

First parameter of the instruction that specifies additional details about the operation being requested.

page (starts at 0)

Data

Key data

None

The answer is limited to 255 bytes :

Condition

Data Value

P2 = 0

The first 253 bytes of the Manufacturer Certificate, prepended with 2 bytes

of its length

P2 > 0

The remaining parts of the certificate, paginated by 255

bytes.

Response

The certificate, prepended with 2 bytes big endian of its length, cut in 255B pages.

Product Documentation

Admin Commands

Signature Commands

Menu
Menu
cryptnox-logo
Menu