openssl pkcs12 -in google-service-account-key.p12 -nocerts -nodes -out google-service-account-key.pem
openssl pkcs12 -in google-service-account-key.p12 -clcerts -nokeys -out google-service-account-crt.pem
openssl rsa -in google-service-account-key.pem -out google-service-account-key-rsa
openssl rsa -in google-service-account-key.pem -out google-service-account-key-rsa.pub -pubout
Answer: notasecret
https://developers.google.com/console/help/#service_accounts
Your application needs the private key when requesting an OAuth 2.0 access token in server-to-server interactions. Google does not keep a copy of this private key, and this screen is the only place to obtain this particular private key. When you click the "Download private key" button, the PKCS #12 formatted private key is downloaded to your local machine. As the screen indicates, you must securely store this key.
The name of the downloaded private key is the key's thumbprint.
When inspecting the key on your computer, or using the key in your application, you will need to provide the password notasecret. Please note that while the password for all Google-issued private keys is the same (notasecret), each key is cryptographically unique.