Sample code for 30+ languages & platforms
.NET Core C#

Load Particular CA Certs into a Java KeyStore

See more Java KeyStore (JKS) Examples

Opens a PEM file containing many CA root certificates, and creates a Java keystore containing a subset of the certificates.

Chilkat .NET Core C# Downloads

.NET Core C#
bool success = false;

// This requires the Chilkat API to have been previously unlocked.
// See Global Unlock Sample for sample code.

Chilkat.JavaKeyStore jks = new Chilkat.JavaKeyStore();

Chilkat.TrustedRoots troots = new Chilkat.TrustedRoots();

// Load certificates from a file.
success = troots.LoadCaCertsPem("qa_data/curl_cacert.pem");
if (success != true) {
    Debug.WriteLine(troots.LastErrorText);
    return;
}

Chilkat.StringBuilder sbDn = new Chilkat.StringBuilder();
Chilkat.StringBuilder sbAlias = new Chilkat.StringBuilder();
bool caseSensitive = false;

int i = 0;
int numCerts = troots.NumCerts;
int numAdded = 0;
while ((i < numCerts)) {
    Chilkat.Cert cacert = troots.GetCert(i);
    sbDn.Clear();
    sbDn.Append(cacert.SubjectDN);
    if (sbDn.Contains("Entrust.net",caseSensitive) == true) {
        Debug.WriteLine(cacert.SubjectDN);

        // The alias is an arbitrary unique string for each cert in the JKS.
        sbAlias.Clear();
        sbAlias.Append("cacert_");
        sbAlias.AppendInt(i + 1);
        jks.AddTrustedCert(cacert,sbAlias.GetAsString());
        numAdded = numAdded + 1;
    }

    i = i + 1;
}

// Verify the number of certs in the JKS equals the number we added.
int numJksCerts = jks.NumTrustedCerts;
Debug.WriteLine("NumTrustedCerts = " + Convert.ToString(numJksCerts));
if (numJksCerts != numAdded) {
    Debug.WriteLine("Something is amiss!");
    return;
}

// Save the JKS.
success = jks.ToFile("myPassword","qa_data/jks/entrust_caCerts.jks");
if (success != true) {
    Debug.WriteLine(jks.LastErrorText);
    return;
}

Debug.WriteLine("Success.");

// The output of this program when tested was:

// C=US, O=Entrust.net, OU=www.entrust.net/CPS incorp. by ref. (limits liab.), OU=(c) 1999 Entrust.net Limited, CN=Entrust.net Secure Server Certification Authority
// O=Entrust.net, OU=www.entrust.net/CPS_2048 incorp. by ref. (limits liab.), OU=(c) 1999 Entrust.net Limited, CN=Entrust.net Certification Authority (2048)
// C=US, O="Entrust, Inc.", OU=www.entrust.net/CPS is incorporated by reference, OU="(c) 2006 Entrust, Inc.", CN=Entrust Root Certification Authority
// NumTrustedCerts = 3
// Success.