radioAe6rt

Your installation of the Java virtual machine contains a list of certificate authorities (CA) – like your browser has a list of CAs – that the JVM trusts are authentic.

Here is how to generate the list of CAs known to your Java VM:

$ keytool -v -list -keystore $JAVA_HOME/jre/lib/security/cacerts -storepass changeit

In trustedcerts.txt we’ve captured the first few certs.

[tags]java security,keytool,java certificates,cacerts[/tags]