monkeysphere-host x509certrequest subcommand
It would be nice if monkeysphere-host had a way of emitting standardized X.509 certificate signing requests (CSRs) from keys that had been imported.
I'm imagining that it would judge the intent of the certificate based on the primary servicename, and choose sensible defaults for the various expected fields. Initially, this would make the most sense for https:// servicenames, but it wouldn't be implausible to extend it to smtp or ike.
(from redmine: created on 2013-07-10)