This wiki has been migrated to and is now deprecated. Please use that site instead.

Certificate Management Protocol (CMP)

CMP is a protocol for managing Public Key Infrastructures (PKI) based on X.509v3 certificates. Protocol messages are defined for certificate creation and management. It is used by commercial PKI products as Entrust Security Manager, Unicert, Insta Certifier and Cryptlib. An OpenSSL client side implementation is work in progess.



Protocol dependencies

Example traffic

TODO: Add example traffic here (as plain text or Wireshark screenshot).



Preference Settings


Example capture file

Display Filter

A complete list of CMP display filter fields can be found in the [ display filter reference]

Capture Filter

You cannot directly filter CMP while capturing. However, if you know the ["TCP"] port used (see above), you can filter on that one.