Open-source Public Key Infrastructure solution for certificate management, ACME integration, and automated enrollment. Built with Laravel 12 and modern security standards.
libsodium encryption for private keys, Argon2id key derivation, hardware security module support (Nitrokey/YubiKey).
Full ACME v2 server implementation compatible with certbot, automatic certificate renewal, challenge validation.
Complete tenant isolation, smart CA selection, hierarchical CA management, access policies per tenant.
SCEP (Microsoft Intune), EST, OCSP responder, CRL distribution, OpenVPN, Windows 802.1x integration.
7-year audit logging, RFC 5280 compliance, FIPS 140-2 architecture, complete audit trail for all PKI operations.
Multi-instance deployment, Galera cluster support, automatic SSL/TLS configuration, production-ready containers.
# Clone the repository
git clone https://github.com/rdemsystems/pki.git
cd pki
# Copy environment configuration
cp .env.example .env
# Generate application key
docker-compose exec app php artisan key:generate
# Start with Docker Compose
docker-compose --profile local-dev up -d
# Run database migrations
docker-compose exec app php artisan migrate
# Create admin user
docker-compose exec app php artisan tinker
>>> User::create(['name' => 'Admin', 'email' => 'admin@example.com', 'password' => bcrypt('password')])
>>> $user->assignRole('admin')
X.509 Certificates
ACME Protocol
OCSP Responder
Crypto Standards
Concentrez-vous sur votre coeur de métier. Nous gérons votre infrastructure PKI de bout en bout : déploiement, maintenance, mises à jour et support 24/7.
DĂ©couvrir notre offre PKI As A Service