I see how to view the contents of the "cacerts" file that comes with the JSSE (I've succeeded at that), but I can't seem to export my JWS server certificate in order to import it into the cacerts file that one is to use with the examples that come with the JSSE. I tried using keytool to simply "list" the contents of the "keys" file that comes with JWS, but that reported "Invalid keystore format". Then, I tried javakey, but that always caused a Windows "Illegal Operation" fatal error (no matter which command-line args or switches I used). So, the question is this: how do I export my JWS server certificate, so I can import it into the cacerts file for the custom SSL client experiments I'm trying to do? BTW: I'm using a self-signed certificate, with the intention of connecting a dedicated intranet client to a single dedicated extranet server. Must I use the relevant security API in some additional code in order to get this done? I've spent some time trying to figure out how to use an API in order to enable a custom client to check a server certificate, store it in the relevant keystore, and then, for subsequent connections, have the SSL handshake use that certificate as a trusted one, but I have yet to actually figure all that out. Any help with any of this would be much appreciated.