I am creating a keystore using OpenSSL using the following command : openssl pkcs12

Question

0

Asked: June 5, 20262026-06-05T13:48:19+00:00 2026-06-05T13:48:19+00:00

I am creating a keystore using OpenSSL using the following command : openssl pkcs12

0

I am creating a keystore using OpenSSL using the following command :

openssl pkcs12 -export -in mycert.crt -inkey mykey.key \
                        -out mycert.p12 -name tomcat -CAfile myCA.crt \
                        -caname root

as per the documentation.

Now when I try to validate the keystore using keytool -list -v -keystore mycert.p12, I am getting an Invalid Keystore Exception.

Is this because I am using Apache implementation of creating a keystore?

Also a constraint I have is that I cannot use Java keytool to create a keystore although my Java program is using to keystore for FTPS transfer.

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-05T13:48:20+00:00

Editorial Team

2026-06-05T13:48:20+00:00Added an answer on June 5, 2026 at 1:48 pm

Use -storetype pkcs12 option with keytool.

keytool -list -v -keystore mycert.p12 -storetype pkcs12

By default, keytool assumes that the keystore type is JKS and if it’s not, keytool fails. If using other keystore files (.p12 in your example), you need to explicitely give a store type using the mentioned method.

0

Reply
Share
Share

- Report

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I am creating a keystore using OpenSSL using the following command : openssl pkcs12

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply