Thanks for the reply, yes I know that export function, unfortunately that is just a cer file (public key only) so it does not export the private key.
The data I have found in /var/opt/CPsuite-R77/fw1/conf/ssl_certificates.C I am now 100% positive this is my pkcs12 file (private+public key) stored in hex format. This exact data blob is found in the same location on all my gateways that are doing https inspection, with the exact same hex value, the expiration dates and cn names tee up with that of my inspection certificate. So now the tricky part is figuring out how to get it back into a pksc12 container.
FYI this is what it looks like:
:certificate_name ("Email=concealed,CN=concealed")
:color (black)
:comments ()
:dn ("Email=concealed,CN=conealed")
:doubleSignCert ()
:generated_by_auto_enrollment (true)
:issuer ("CN=mycertsrver")

kcs12buf (0008020<TRIMMED>c8230)

kisignkey (d27<TRIMMED>31)
:type (pkcs12cert)
:valid_from (1487561977)
:valid_to (1645241977)
Bookmarks