Sample code for 30+ languages & platforms
Java

Download and Trust the DigiCert Global Root CA

See more Certificates Examples

Demonstrates how to download a root certificate and trust it.

Chilkat Java Downloads

Java
import com.chilkatsoft.*;

public class ChilkatExample {

  static {
    try {
        System.loadLibrary("chilkat");
    } catch (UnsatisfiedLinkError e) {
      System.err.println("Native code library failed to load.\n" + e);
      System.exit(1);
    }
  }

  public static void main(String argv[])
  {
    boolean success = false;

    // This requires the Chilkat API to have been previously unlocked.
    // See Global Unlock Sample for sample code.

    // In this example, the URLs for the DigiCert root CA certs are available at this web page:
    // https://www.digicert.com/digicert-root-certificates.htm

    // This example downloads the "DigiCert Global Root G3"
    // Valid until: 15/Jan/2038
    // Serial #: 05:55:56:BC:F2:5E:A4:35:35:C3:A4:0F:D5:AB:45:72
    // Thumbprint: 7E04DE896A3E666D00E687D33FFAD93BE83D349E

    String certUrl = "https://dl.cacerts.digicert.com/DigiCertGlobalRootG3.crt";

    CkHttp http = new CkHttp();
    CkBinData bdCert = new CkBinData();
    success = http.DownloadBd(certUrl,bdCert);
    if (success == false) {
        System.out.println(http.lastErrorText());
        return;
        }

    // Load it into a Chilkat cert object.
    CkCert cert = new CkCert();
    success = cert.LoadFromBd(bdCert);
    if (success == false) {
        System.out.println(cert.lastErrorText());
        return;
        }

    // Examine the common name,serial, and thumbprint:
    System.out.println("CN: " + cert.subjectCN());
    System.out.println("Serial: " + cert.serialNumber());
    System.out.println("Thumbprint: " + cert.sha1Thumbprint());

    // Output from the above:
    // CN: DigiCert Global Root G3
    // Serial: 055556BCF25EA43535C3A40FD5AB4572
    // Thumbprint: 7E04DE896A3E666D00E687D33FFAD93BE83D349E

    // If desired, the certificate can be saved to a local file so it does not need
    // to be downloaded from the website every time.  
    String certPath = "qa_data/certs/DigiCertGlobalRootG3.crt";
    success = bdCert.WriteFile(certPath);

    // To load the cert from a file...
    success = cert.LoadFromFile(certPath);

    // Do the following to add the cert to the collection of trusted roots
    // for this application.  (Note:  The trust is not persisted.  Each time the
    // application runs, it should load the cert (from whatever source, whether it is
    // a file, a database,etc.) and do the following:
    CkTrustedRoots troots = new CkTrustedRoots();

    troots.AddCert(cert);
    troots.Activate();

    System.out.println(cert.subjectCN() + " is now trusted for this run of this application.");
  }
}