Question 1

What is a key fingerprint?

Accepted Answer

A fingerprint is a hash of the public key, used to identify the key without comparing the full key. SSH traditionally used MD5 (32 hex chars); modern practice uses SHA-256. Fingerprints are shown in colon-separated hex (e.g. aa:bb:cc:dd) for readability.

Question 2

Why include MD5 when it's broken?

Accepted Answer

MD5 is cryptographically broken and should not be used for security. SSH historically used MD5 fingerprints, so we include it for compatibility when verifying known hosts or matching legacy tools. Prefer SHA-256 fingerprints for new use.

Question 3

PEM vs SSH key format?

Accepted Answer

PEM keys use base64 between -----BEGIN/END----- headers. SSH keys use a single line: ssh-rsa or ssh-ed25519 followed by base64. Both contain the same underlying key data in different encodings. This tool accepts both.

Question 4

How do I get my SSH public key?

Accepted Answer

Usually in ~/.ssh/id_rsa.pub or ~/.ssh/id_ed25519.pub. Run cat ~/.ssh/id_rsa.pub to display it. Paste the full line (including ssh-rsa AAAA...) into this tool.

Question 5

Is my key sent to a server?

Accepted Answer

No. All hashing runs in your browser. Your key never leaves your device. Fingerprints are computed locally.

Public Key Fingerprint Generator

Public key (PEM, SSH, or raw base64)

What is a Public Key Fingerprint?

SHA-256 vs MD5 Fingerprints

Key Formats Supported

Frequently Asked Questions

What is a key fingerprint?

Why include MD5 when it's broken?

PEM vs SSH key format?

How do I get my SSH public key?

Is my key sent to a server?

Related Tools

Explore More Tools