Thanks @jsnfwlr I agree, hence why we strongly recommend in the FAQs to not do that and to send or print the private keys separately. I actually thought about whether to include that field as optional (as it is now) or omit it completely. What if someone (conscious of the risk) wanted to put all the data (including private keys) in a single and self-contained certificate to print? This said, I appreciate your comment and I'm definitely considering to remove the private key field to not even "tempt" the unexperienced user to provide it. Any other feedback on this topic? Should I remove the private key field?
CryCert
CryCert