CERTivity is a powerful pure Java multi-platform visual tool for creating, managing and handling different KeyStore types (such as JKS, JCEKS, PKCS12, the Bouncy Castle types BKS and UBER, or Windows Native), Keys such as Private Keys, Public Keys or Secret Keys in different formats (e.g. PKCS, OpenSSL, using various algorithms - RSA/DSA...), Certificates (version 1 and 3) and Certificates Chains.
CERTivity reveals many features related to KeyStore management and Public Key Infrastructure domain like exporting/importing KeyPairs, Private/Public Keys and Certificates, Certificate Extensions management, import SSL certificates from servers, extend validity period for self-signed certificates, testing given certificates on custom protocols (e.g. raw text such as STARTTLS), obtain revocation status, convert from one KeyStore type to another, change KeyStore or KeyStore entries passwords.
CERTivity also creates and verifies digital signatures on PDF, XML, JAR / APK or CSR files. For PDF signatures it is covering all of the standard SubFilter values "adbe.x509.rsa_sha1", "adbe.pkcs7.detached" and "adbe.pkcs7.sha1", as well as providing rich and "intriguing" information on signature verification. Signatures on XML documents can be used as authentication credentials or as a way to check data integrity. XML signatures can be applied to XML files, HTML pages, binary-encoded data and any XML-encoded data. CERTivity can verify XML signatures using either the certificates embedded in the signature, or using a specific certificate given by the user. CERTivity also brings up the ability to sign and verify JAR files, to ensure the integrity of Java archives, and also has the ability to sign and verify APK files (for Android applications development).
As the features are combined and centralized having an intuitive and productive organization, CERTivity is offering to developers and system administrators, and to all users in general the possibility to maximize productivity.
What's new in this version:
Version 1.2 added support for viewing CRL files and fixed importing PEM certificate chains files issue.