In a previous post, I showed how the openssl rsautl tool can be used to encrypt small bits of data to an SSH host key.
One problem, is that rsautl cannot encrypt any data that is larger than the key size. One workaround however, is to use a symmetric key for the bulk encryption, and then use RSA to encrypt the smaller symmetric key.