The ChkTrust utility checks the validity of a signed file. If the hashes agree, ChkTrust verifies the signing certificate. For the latest documentation on Chktrust, see the CryptoAPI Tools section of the MSDN Library.
For more information on application security, see the Platform SDK, Security section of the MSDN Library.
ChkTrust [options] signedFile
signedFile
Name of the signed file containing the signature to be verified.
The following options are supported.
Option | Internet Explorer Version | Description |
-c | 3.02 only | Signed file is a cabinet file. |
-i | 3.02 only | Signed file is a PE image file. Includes .exe, .dll, and .ocx files. |
-n | 3.02 only | Do not display user interface. |
-q | 4.0 and later | Do not display user interface. |
-? | 4.0 and later | Displays all the options. |
ChkTrust with Internet Explorer 4.0 or later can distinguish file types automatically. The -c and -i switches used in Internet Explorer 3.02 are obsolete.
The following command demonstrates the use of ChkTrust with Internet Explorer 4.0 or later.
ChkTrust MyProgram.exe
A successful response from the above would be:
Result: 0
Note Versions of ChkTrust older than the version released with Internet Explorer 3.02 cannot validate files signed with the current release of CryptoAPI Tools.