Package signing certificate keystores can be created using the keytool
command provided by the JDK.
To Create a self signed certificate for package signing that is good for 10 years:
keytool -genkeypair \
-alias _dunesrsa_alias_ \
-keyalg RSA \
-keysize 2048 \