The TinyCert REST API allows programmatic access to most of TinyCert's functionality. There are API calls for Certification Authority management (e.g. enumerating CAs, creating new ones, deleting them, retrieving the certificate and any of its details) and for Certificate management (enumerating certificates, creating new certificates or reissuing existing ones and retrieving public or private keys or certificate details).
To be able to make use of the API, you need the email address, passphrase and your personal API key. The API key generated for your account is:
This API key serves as authentication mechanism instead of your password. Every request you make to the API must be cryptographically signed using your API key.
Any calls made to the REST API must be passed as a POST request over HTTPS. GET requests are not supported, as they might result in your passphrase being stored in the server logs and HTTP libraries may enforce length limits on URLs.
All API endpoints are relative to the URL https://www.tinycert.org/api/v1/. By default, the API will return its responses in JSON format. It is also possible to request a response in XML format instead, by simply specifying the .xml extension on the URL. A .json extension is also valid, but optional.