[tor-dev] generate relay fingerprint without tor given the datadir/keys folder?

Ivan Markin twim at riseup.net
Sat Feb 4 01:19:00 UTC 2017

On Fri, Feb 03, 2017 at 04:12:00PM +0000, nusenu wrote:
> Hi,
> given the files within the datadir/keys folder (without the
> datadir/fingerprint file), is there an easy way to generate the relay
> fingerprint? (using openssl?)
> According to the spec [1] the fingerprint is the SHA1 hash of the public
> key. (I assume RSA pubkey)
> According to the tor man page [2] the RSA public key should be in
> keys/secret_id_key.
> openssl rsa -in secret_id_key -pubout| ..? |sha1sum

Not as messy as I thought though:
$ openssl rsa -in secret_id_key -outform DER -RSAPublicKey_out | sha1

On GNU/Linux sha1 is probably sha1sum.

Happy hacking
Ivan Markin

More information about the tor-dev mailing list