Generate RSA public/private key pairs online for encryption, digital signatures, and SSL certificates. Supports 1024, 2048, and 4096-bit key sizes. Download PEM-formatted keys instantly for use in SSH, TLS, and JWT signing.
RSA (Rivest-Shamir-Adleman) is a widely used asymmetric encryption algorithm. A public key encrypts data; only the corresponding private key can decrypt it.
2048-bit is the minimum recommended. 4096-bit provides stronger security. 1024-bit is considered insecure.
The public key is used to encrypt data (only the private key can decrypt it) and to verify digital signatures. The private key is used to decrypt data and to create signatures. The public key can be freely shared; the private key must be kept secret. In SSH, the public key is placed on the server while the private key stays on your machine.
RSA-2048 is still considered secure — NIST projects it will not be broken before 2030 — and has better performance (signing/encryption is 4-8x faster than 4096). RSA-4096 offers a longer security margin, suitable for protecting highly sensitive data for 10+ years. Practical recommendation: 2048 is sufficient for TLS certificates and SSH keys (or switch to Ed25519, which is shorter, faster, and more secure); consider 4096 for code signing certificates or long-term document encryption.