How can just the public key of a certificate be exported in CA Top Secret?