- Download all Google's CA Certificates from official Google Trust Services: https://pki.goog/
- Import all certs to local keystore, say google.certs:
keytool -import -keystore google.certs -nonoprompt -storepass "changeit" -file file.crt
...
- Download import.bat and place it in the same directory as google.certs is, then run import.bat to merge cacerts keystore with google's CA certificates. You need Administrator rights to do changes.