What certificates are trusted in truststore?

java certificate keystore truststore
code-gijoe picture code-gijoe · Feb 8, 2012 · Viewed 102.5k times · Source

I do not know very well keystore / truststore lingo but as far as I'm concerned, a truststore keeps the certificates trusted by a peer server.

I can view the content of a keystore using

keytool -list -keystore refArchive/testkeystore
Enter keystore password: password

Is there any equivalent for the truststore? How can I view the trusted certificates?

thx!

Answer

Aravind Yarram picture Aravind Yarram · Feb 8, 2012

Trust store generally (actually should only contain root CAs but this rule is violated in general) contains the certificates that of the root CAs (public CAs or private CAs). You can verify the list of certs in trust store using

keytool -list -v -keystore truststore.jks

Related questions

Extending expiration date of trustedCertEntry within a keystore

Using keytool, I am trying to extend the expiration date of a trustedCertEntry within a keystore that I have. The keystore has the contents below $ keytool -list -keystore certs/authTruststore.jks Enter keystore password: Keystore type: JKS Keystore provider: SUN …

Read More
How to import a .cer certificate into a java keystore?

During the development of a Java webservice client I ran into a problem. Authentication for the webservice is using a client certificate, a username and a password. The client certificate I received from the company behind the webservice is in .…

Read More
How to properly import a selfsigned certificate into Java keystore that is available to all Java applications by default?

I do want to import a self signed certificate into Java so any Java application that will try to establish a SSL connection will trust this certificate. So far, I managed to import it in keytool -import -trustcacerts -noprompt -storepass …

Read More