Re: signing with imported cert fails to sign application

Hi Richard, You need to have private key in cert/key database you intend to use in order to perform a message/code signing operation. > certutil -L -d . -n "certs.myorg.org/signing" -a -o myself.cacert > certutil -N -d new_db > certutil -A -n "certs.myorg.org/signing" -t ",,C" -i m

Re: Repeated Certificates

Igor, CryptoStore().getCertificates() returns an array of X509Certificate available in the store. It is possibility, that you are printing a reference to the returned array instead of references to certs. My test code that prints certs from internal cert store works properly. Can you please add

Re: importing certificate problem for generated keys

Hi, I don't think it matters that your CA works offline. In fact many CAs work the sameway when dealing with cert requests. Most probable cause of problem is the signed cert itself. The fact that you can decode and printout the cert with openssl only suggest that is a properly encoded and probably