02-03-2012 03:38 PM
For the past several months, whenever I sign a BAR I get the message: "Warning: The signer certificate will expire within 6 months."
Peter9477 pointed me toward the command to get some more information about the signing certificate:
blackberry-keytool -exportcert -storepass PASS -keystore STORE -file output.crt
Enter your store pass and and keystore in the appropriate places. Output.crt (you can name it whatever you want to) will be the resulting file. Open it and it will give you more information about your certificate.
In my case it points out that my certificate will expire on February 23. As that date is fast approaching I am wondering what we are supposed to do to renew our current certificate, so that we can continue to push out updates for our apps.
I am also wondering what happens if the certificate expires.
Any clarification is appreciated
Solved! Go to Solution.
02-03-2012 03:41 PM
02-03-2012 03:45 PM
02-03-2012 04:26 PM - edited 02-03-2012 04:27 PM
Just in case the tool you're using to view it (Windows, recognizing the .crt extension?) is screwing up, note the following command that's also on the keytool, for displaying the details at the command line:
blackberry-keytool -printcert -file output.crt
(with output.crt being whatever you exported to in the earlier command).
On mine, this looks something like this:
Owner: CN=[my company name] Issuer: CN=[my company name] Serial number: [8-digits-hex] Valid from: Thu Feb 17 17:58:13 EST 2011 until: Fri Feb 17 17:58:13 EST 2012 Certificate fingerprints: MD5: [sequence-of-bytes-in-hex] SHA1: [sequence-of-bytes-in-hex] Signature algorithm name: SHA512withECDSA Version: 3
02-07-2012 11:08 AM
02-07-2012 11:31 AM
02-07-2012 11:33 AM
02-07-2012 12:03 PM
There is still an issue if a developer loses their signature keys as the Application ID/Author ID is tied directly to those keys, not just the vendor name. If a developer signs version 1 of their app with one set of keys then signs version 2 with a second set, the App World Vendor Portal will now actively reject version 2 from being uploaded as it will be seen as a separate app altogether.
Due to the above info it is extremely important to back up your signature key files as soon as they are created:
02-07-2012 12:06 PM