Skip to content

Instantly share code, notes, and snippets.

@dlinsley

dlinsley/vRO_package_signing_cert_generation.md

Last active April 8, 2022 05:41
Show Gist options
  • Star 1 You must be signed in to star a gist
  • Fork 1 You must be signed in to fork a gist
  • Save dlinsley/7b39dae25e005cc4c7f746f069071af7 to your computer and use it in GitHub Desktop.
Save dlinsley/7b39dae25e005cc4c7f746f069071af7 to your computer and use it in GitHub Desktop.
Download ZIP
vRO package signing cert generation
Raw
vRO_package_signing_cert_generation.md

Package Signing Certificate Generation

Package signing certificate keystores can be created using the keytool command provided by the JDK.

To Create a self signed certificate for package signing that is good for 10 years:

keytool -genkeypair \
-alias _dunesrsa_alias_ \
-keyalg RSA \
-keysize 2048 \
-sigalg SHA512withRSA \
-storetype JCEKS \
-keystore package-signing-cert.jks \
-storepass password \
-dname "CN=Pkg Sign Team,OU=Org,O=Company,C=Country" \
-ext eku=sa \
-ext ku:c=dig,keyEncipherment \
-validity 3650

Make the certificate unique by updating the distinquished name (-dname), keystore password (-storepass)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment