KeyStore Explorer can help you with complex operations such as key pair generation and code signing. In this respect, the real merit of the developers has been the design of a graphic user interface to relieve you from the effort of using command-line utilities (Keytool and Jarsigner). The product is intended for Java developers, which explains why it seems so esoteric for the common user.
Let us start by taking a look at its interface, which is, after all, the real contribution. First, it looks quite outdated, although I do not think its potential users would mind that. Good news is that there is a sort of dashboard to start common operations such as creating and opening a KeyStore as well as opening and examining a certificate.
It is good that the application helps you follow the workflow. In this respect, you can begin by creating a KeyStore and picking a type from a list that includes JCEKS, JKS, PKCS #12, BKS-V1, UBER and BCFKS. Then, you should simply save the new KeyStore to a file, which also requires entering a KeyStore password. Next, you can proceed to generate a Key Pair, which is accessible from the menu. This time, you are asked to pick one of the algorithms (RSA, DSA and EC) and a Key Size. The following steps are editing the Key Pair name and adding certificate extensions.
Once you are done, the new entries are shown in KeyStore Explorer, from where you can browse, modify, import and export KeyStores. Likewise, it allows you to digitally sign Java applications. It is excellent that, thanks to the application’s support of a wide range of KeyStore, key pair, private key and certificate formats, it can be used to convert between them.
In general, KeyStore Explorer is definitely a convenient tool that saves you from memorizing and typing complex commands. However, compared with other similar tools, I think it is a shame that it does not support producing certificates in batches. The product is opensource and can be used for free.
