I read through the script from the SK article, and it's quite extensive (and impressive!). I see R81.20 JHF 54 introduced a new command and I see lots of new API-based activities, some of which are already in place. I can see where they're going with this in the future... they're tracking towards having this whole process be server-side API enabled! That'll be quite exciting and very nice. It's not there yet, but it's not far away. Once they sort out how to do the openssl pkcs12 elements, they'll have it done.
I bet they can do this a lot easier than they think they can. Link CPM to the libcrypto pieces, add the shim code for PKCS12 ... assuming GPL agrees with that. Might have an issue there.
Anyhoo... it looks good, I like where it's going; Hopefully they can get us there quickly and bug-free. 😆