A minimalistic X.509 certificate validator
Project description
verify-x509 is a minimalistic implementation of X.509 certificate validation logic. It is intended for use with applications and protocols that use X.509 PKI without TLS/SSL. Its features are:
Certificate chain building to the Mozilla trust store
Point-in-time validation of not-before/not-after constraints
Plugin architecture for X.509 extension processing
Offline operation (while OCSP responses and CRLs can be passed by the caller, verify-x509 makes no network calls)
verify-x509 implements elements of the following RFCs RFC 5280
Installation
pip install verify-x509
Synopsis
from verify_x509 import X509Verifier
...
Links
Bugs
Please report bugs, issues, feature requests, etc. on GitHub.
License
Copyright 2022-2023, Andrey Kislyuk and verify-x509 contributors. Licensed under the terms of the Apache License, Version 2.0. Distribution of the LICENSE and NOTICE files with source copies of this package and derivative works is REQUIRED as specified by the Apache License.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for verify_x509-0.0.1-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 896069972ed635912bf012383b36c5b958addf4ce592e2fb80e5fce88c4ed362 |
|
MD5 | 2d2a0a32d3f335945e596e7ff3446faf |
|
BLAKE2b-256 | 484fd77d670271305663ea3fb40abca65cc1d7248beb27b630ada29fe3b953b7 |