Operation Manual
Cryptography Commands
Cryptography Commands
16 – 419
Examples
To display information about a cryptographic certificate, type the following command:
MX# show crypto certificate eap
Table 16– 2 describes the fields of the display.
See Also
● crypto generate self-signed on page 16-414
● show crypto ca-certificate on page 16-417
show crypto key domain
Displays the checksum (also called a fingerprint) of the public key used to authenticate
management traffic between MX switches.
Syntax
show crypto key domain
Defaults
None.
Access
Enabled.
History
Introduced in MSS 5.0.
Examples
To display the fingerprint for MX-MX security, type the following command:
MX# show crypto key domain
Domain public key:
e6:43:91:e2:b3:53:ed:46:76:5f:f0:96:3a:3b:86:d3
See Also
crypto generate key on page 16-412
show crypto key ssh
Displays SSH authentication key information. This command displays the checksum (also called a
fingerprint) of the public key. When you connect to the MX with an SSH client, you can compare
the SSH key checksum displayed by the MX with the one displayed by the client to verify that you
really are connected to the MX and not another device. Generally, SSH clients remember the
encryption key after the first connection, so you need to check the key only once.
Syntax
show crypto key ssh
Defaults
None.
Access
Enabled.
History
Introduced in MSS 2.0.
Table 16– 2. crypto certificate Output
Fields Description
Version Version of the X.509 certificate.
Serial Number A unique identifier for the certificate or signature.
Subject Name of the certificate owner.
Signature Algorithm Algorithm that created the signature, such as RSA MD5 or RSA SHA.
Issuer Certificate authority that issued the certificate or signature.
Validity Time period for which the certificate is valid.