Certificate chain not trusted on Windows with SonarLint (works on Linux)

SonarQube for IDE Eclipse
1

Please provide

  • Operating system: Windows 11 x64
  • IDE name and version: Eclipse 2026-03 (4.39)
  • SonarQube for Eclipse plugin version: 12.2.1.84686
  • Programming language you’re coding in: Java
  • Is connected mode used: Yes
  • SonarQube Cloud, SonarQube Server, or SonarQube Community Build: SonarQube Server

And a thorough description of the problem / question:

Steps to reproduce:

  1. Eclipse Menu: Window → Show View → Other… → SonarQube → SonarQube Bindings
  2. SonarQube Bindings View: New Connection… → SonarQube Server → URL: https://myurl.intranet → Token: mytoken-1234567890 → Next
  3. Error appears: javax.net.ssl.SSLHandshakeException: (certificate_unknown) The certificate chain is not trusted

Observations:

  • On Windows: The server works fine over plain HTTP (http://myurl.intranet), but any HTTPS request from Eclipse (via the SonarLint plugin or the embedded scanner) fails.
  • On Linux: The same configuration works without issues.

What I’ve already tried:

  1. Imported the certificate into the embedded JRE’s cacerts (same approach that works on Linux).
  2. Tried adding the certificate inside the plugin JAR (org.sonarlint.eclipse.sloop.windows.x64_12.2.1.84686.jar) in the plugins folder of the SonarQube P2 mirror directory — not recommended, but still doesn’t work.
  3. Modified eclipse-inst.ini to remove -Djavax.net.ssl.trustStore=NONE.

Question:
What is the correct way on Windows to ensure that the SonarQube Eclipse plugin uses a keystore that includes our internal CA? Is there a specific keystore location or configuration that SonarLint requires on Windows that differs from Linux?

2

Hey @guy,

Can you please provide the verbose logs from the IDE startup? It will contain the information on which JRE is used by the IDE plug-in, and also the full stack traces.
This will be helpful to pinpoint exactly which JRE is messing with you.

Cheers :baby_bottle:

3

Hi EclipseWizard

Here below the verbose Window log.
Please let me know if you need any additional information.

Thanks for you help :baby:

Using Java installation of Eclipse
Using JRE from C:\Users\guy\Documents\jdk-25.0.0+36-certified
Starting SonarLint for Eclipse 11.9.0.82894
Started embedded server on port 64120
Can't open directory channel. Log directory fsync won't be performed.
Monitoring is disabled by feature flag.
Request failed

javax.net.ssl.SSLHandshakeException: (certificate_unknown) The certificate chain is not trusted
	at java.base/sun.security.ssl.Alert.createSSLException(Alert.java:130)
	at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:376)
	at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:319)
	at java.base/sun.security.ssl.TransportContext.fatal(TransportContext.java:314)
	at java.base/sun.security.ssl.CertificateMessage$T12CertificateConsumer.checkServerCerts(CertificateMessage.java:651)
	at java.base/sun.security.ssl.CertificateMessage$T12CertificateConsumer.onCertificate(CertificateMessage.java:471)
	at java.base/sun.security.ssl.CertificateMessage$T12CertificateConsumer.consume(CertificateMessage.java:367)
	at java.base/sun.security.ssl.SSLHandshake.consume(SSLHandshake.java:421)
	at java.base/sun.security.ssl.HandshakeContext.dispatch(HandshakeContext.java:477)
	at java.base/sun.security.ssl.SSLEngineImpl$DelegatedTask.run(SSLEngineImpl.java:1207)
	at org.apache.hc.core5.reactor.ssl.SSLIOSession.doRunTask(SSLIOSession.java:343)
	at org.apache.hc.core5.reactor.ssl.SSLIOSession.doHandshake(SSLIOSession.java:414)
	at org.apache.hc.core5.reactor.ssl.SSLIOSession.access$100(SSLIOSession.java:74)
	at org.apache.hc.core5.reactor.ssl.SSLIOSession$1.inputReady(SSLIOSession.java:201)
	at org.apache.hc.core5.reactor.InternalDataChannel.onIOEvent(InternalDataChannel.java:143)
	at org.apache.hc.core5.reactor.InternalChannel.handleIOEvent(InternalChannel.java:51)
	at org.apache.hc.core5.reactor.SingleCoreIOReactor.processEvents(SingleCoreIOReactor.java:176)
	at org.apache.hc.core5.reactor.SingleCoreIOReactor.doExecute(SingleCoreIOReactor.java:125)
	at org.apache.hc.core5.reactor.AbstractSingleCoreIOReactor.execute(AbstractSingleCoreIOReactor.java:92)
	at org.apache.hc.core5.reactor.IOReactorWorker.run(IOReactorWorker.java:44)
	at java.base/java.lang.Thread.run(Thread.java:1474)
Caused by: java.security.cert.CertificateException: The certificate chain is not trusted
	at nl.altindag.ssl.trustmanager.CombinableX509TrustManager.checkTrusted(CombinableX509TrustManager.java:61)
	at nl.altindag.ssl.trustmanager.AggregatedX509ExtendedTrustManager.checkServerTrusted(AggregatedX509ExtendedTrustManager.java:91)
	at java.base/sun.security.ssl.CertificateMessage$T12CertificateConsumer.checkServerCerts(CertificateMessage.java:629)
	... 16 more
	Suppressed: java.security.cert.CertificateException: java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty
		at nl.altindag.ssl.trustmanager.CombinableX509TrustManager.checkTrusted(CombinableX509TrustManager.java:54)
		... 18 more
	Caused by: java.security.InvalidAlgorithmParameterException: the trustAnchors parameter must be non-empty
		at java.base/java.security.cert.PKIXParameters.setTrustAnchors(PKIXParameters.java:202)
		at java.base/java.security.cert.PKIXParameters.<init>(PKIXParameters.java:121)
		at java.base/java.security.cert.PKIXBuilderParameters.<init>(PKIXBuilderParameters.java:105)
		at java.base/sun.security.validator.PKIXValidator.<init>(PKIXValidator.java:93)
		at java.base/sun.security.validator.Validator.getInstance(Validator.java:173)
		at java.base/sun.security.ssl.X509TrustManagerImpl.getValidator(X509TrustManagerImpl.java:308)
		at java.base/sun.security.ssl.X509TrustManagerImpl.checkTrustedInit(X509TrustManagerImpl.java:183)
		at java.base/sun.security.ssl.X509TrustManagerImpl.checkTrusted(X509TrustManagerImpl.java:254)
		at java.base/sun.security.ssl.X509TrustManagerImpl.checkServerTrusted(X509TrustManagerImpl.java:144)
		at nl.altindag.ssl.trustmanager.DelegatingX509ExtendedTrustManager.checkServerTrusted(DelegatingX509ExtendedTrustManager.java:53)
		at nl.altindag.ssl.trustmanager.AggregatedX509ExtendedTrustManager.lambda$checkServerTrusted$5(AggregatedX509ExtendedTrustManager.java:91)
		at nl.altindag.ssl.trustmanager.CombinableX509TrustManager.checkTrusted(CombinableX509TrustManager.java:41)
		... 18 more
	Suppressed: java.security.cert.CertificateException: No X509ExtendedTrustManager implementation available
		at nl.altindag.ssl.trustmanager.DummyX509ExtendedTrustManager.checkServerTrusted(DummyX509ExtendedTrustManager.java:69)
		at nl.altindag.ssl.trustmanager.DelegatingX509ExtendedTrustManager.checkServerTrusted(DelegatingX509ExtendedTrustManager.java:53)
		at nl.altindag.ssl.trustmanager.HotSwappableX509ExtendedTrustManager.lambda$checkServerTrusted$2(HotSwappableX509ExtendedTrustManager.java:71)
		at nl.altindag.ssl.trustmanager.HotSwappableX509ExtendedTrustManager.checkTrusted(HotSwappableX509ExtendedTrustManager.java:92)
		at nl.altindag.ssl.trustmanager.HotSwappableX509ExtendedTrustManager.checkServerTrusted(HotSwappableX509ExtendedTrustManager.java:71)
		at nl.altindag.ssl.trustmanager.InflatableX509ExtendedTrustManager.lambda$checkServerTrusted$4(InflatableX509ExtendedTrustManager.java:119)
		at nl.altindag.ssl.trustmanager.InflatableX509ExtendedTrustManager.checkTrusted(InflatableX509ExtendedTrustManager.java:150)
		at nl.altindag.ssl.trustmanager.InflatableX509ExtendedTrustManager.checkServerTrusted(InflatableX509ExtendedTrustManager.java:119)
		at nl.altindag.ssl.trustmanager.AggregatedX509ExtendedTrustManager.lambda$checkServerTrusted$5(AggregatedX509ExtendedTrustManager.java:91)
		at nl.altindag.ssl.trustmanager.CombinableX509TrustManager.checkTrusted(CombinableX509TrustManager.java:41)
		... 18 more

GET https://myurl.intranet/api/system/status javax.net.ssl.SSLHandshakeException: (certificate_unknown) The certificate chain is not trusted | failed after 149ms
4

Hey @guy,

Based on the second line of the log, the JDK at C:\Users\guy\Documents\jdk-25.0.0+36-certified is used. Have you configured this as well?

You can change what Java Runtime (not necessarily a JDK) is used by SonarQube for IDE inside the preferences, please see this documentation.

As this is not the JDK bundled with the Eclipse IDE nor the one SonarQube for IDE, have you changed the setting in the preferences, or did you configure your Eclipse IDE to use this very JDK as the runtime?

This information would be all that is needed to investigate further!

Cheers :glass_of_milk:

5

Hi EclipseWizard,

Yes, the JDK at C:\Users\guy\Documents\jdk-25.0.0+36-certified is configured.

I tried changing the settings in the SonarQube preferences, but the result is unchanged.

image
image769×687 59.3 KB

The certificate has been added to the standard JDK 25, and this certified JDK is used during the Eclipse installation. My eclipse.ini contains the line :

-vm
C:/Users/guy/Documents/jdk-25.0.0+36-certified/bin

It worked on older Eclipse + SonarQube installations on Windows and continues to work on Eclipse + SonarQube setups running on Linux.

Thanks for your help​:cup_with_straw:

6

Looking at the exception: the trustAnchors parameter must be non-empty
I would assume that the cacert which is loaded is empty. To reproduce this error we need your cacert file. Would you be able to share it here, or in a private chat if you don’t want to share it publically.

So looking at the application flow I would assume Sonarlint is starting correctly. The client in sonarlint want’s to establish a connection with the server. The ssl handshake fails as it could not validate the server certificate against the list of trusted certificates in the truststore of the client. I think if you are able to share the cacert file which is being used we can help you resolve this issue

7

Hello,

Here is my cacert file for jdk-25.0.0+36-certified

Type de fichier de clés : jks
Fournisseur de fichier de clés : SUN

Votre fichier de clés d'accès contient 155 entrées

c_de,o_atos,cn_atos_trustedroot_2011 [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 2B:B1:F5:3E:55:0C:1D:C5:F1:D4:E6:B7:6A:46:4B:55:06:02:AC:21
c_de,o_atos,cn_atos_trustedroot_root_ca_ecc_tls_2021 [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 9E:BC:75:10:42:B3:02:F3:81:F4:F7:30:62:D4:8F:C3:A7:51:B2:DD
c_de,o_atos,cn_atos_trustedroot_root_ca_rsa_tls_2021 [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 18:52:3B:0D:06:37:E4:D6:3A:DF:23:E4:98:FB:5B:16:FB:86:74:48
c_es,o_accv,ou_pkiaccv,cn_accvraiz1 [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 93:05:7A:88:15:C6:4F:CE:88:2F:FA:91:16:52:28:78:BC:53:64:17
cn_ac_raiz_fnmtrcm_servidores_seguros,ou_ceres,o_fnmtrcm,c_es [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 62:FF:D9:9E:C0:65:0D:03:CE:75:93:D2:ED:3F:2D:32:C9:E3:E5:4A
cn_actalis_authentication_root_ca,o_actalis_spa03358520967,l_milan,c_it [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : F3:73:B3:87:06:5A:28:84:8A:F2:F3:4A:CE:19:2B:DD:C7:8E:9C:AC
cn_affirmtrust_commercial,o_affirmtrust,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : F9:B5:B6:32:45:5F:9C:BE:EC:57:5F:80:DC:E9:6E:2C:C7:B2:78:B7
cn_affirmtrust_networking,o_affirmtrust,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 29:36:21:02:8B:20:ED:02:F5:66:C5:32:D1:D6:ED:90:9F:45:00:2F
cn_affirmtrust_premium,o_affirmtrust,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : D8:A6:33:2C:E0:03:6F:B1:85:F6:63:4F:7D:6A:06:65:26:32:28:27
cn_affirmtrust_premium_ecc,o_affirmtrust,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : B8:23:6B:00:2F:1D:16:86:53:01:55:6C:11:A4:37:CA:EB:FF:C3:BB
cn_amazon_root_ca_1,o_amazon,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 8D:A7:F9:65:EC:5E:FC:37:91:0F:1C:6E:59:FD:C1:CC:6A:6E:DE:16
cn_amazon_root_ca_2,o_amazon,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 5A:8C:EF:45:D7:A6:98:59:76:7A:8C:8B:44:96:B5:78:CF:47:4B:1A
cn_amazon_root_ca_3,o_amazon,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 0D:44:DD:8C:3C:8C:1A:1A:58:75:64:81:E9:0F:2E:2A:FF:B3:D2:6E
cn_amazon_root_ca_4,o_amazon,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : F6:10:84:07:D6:F8:BB:67:98:0C:C2:E2:44:C2:EB:AE:1C:EF:63:BE
cn_anf_secure_server_root_ca,ou_anf_ca_raiz,o_anf_autoridad_de_certificacion,c_es [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 5B:6E:68:D0:CC:15:B6:A0:5F:1E:C1:5F:AE:02:FC:6B:2F:5D:6F:74
cn_autoridad_de_certificacion_firmaprofesional_cif_a62634068,c_es [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 0B:BE:C2:27:22:49:CB:39:AA:DB:35:5C:53:E3:8C:AE:78:FF:B6:FE
cn_bjca_global_root_ca1,o_beijing_certificate_authority,c_cn [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : D5:EC:8D:7B:4C:BA:79:F4:E7:E8:CB:9D:6B:AE:77:83:10:03:21:6A
cn_bjca_global_root_ca2,o_beijing_certificate_authority,c_cn [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : F4:27:86:EB:6E:B8:6D:88:31:67:02:FB:BA:66:A4:53:00:AA:7A:A6
cn_buypass_class_2_root_ca,o_buypass_as983163327,c_no [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 49:0A:75:74:DE:87:0A:47:FE:58:EE:F6:C7:6B:EB:C6:0B:12:40:99
cn_buypass_class_3_root_ca,o_buypass_as983163327,c_no [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : DA:FA:F7:FA:66:84:EC:06:8F:14:50:BD:C7:C2:81:A5:BC:A9:64:57
cn_ca_disig_root_r2,o_disig_as,l_bratislava,c_sk [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : B5:61:EB:EA:A4:DE:E4:25:4B:69:1A:98:A5:57:47:C2:34:C7:D9:71
cn_certainly_root_e1,o_certainly,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : F9:E1:6D:DC:01:89:CF:D5:82:45:63:3E:C5:37:7D:C2:EB:93:6F:2B
cn_certainly_root_r1,o_certainly,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : A0:50:EE:0F:28:71:F4:27:B2:12:6D:6F:50:96:25:BA:CC:86:42:AF
cn_certigna,o_dhimyotis,c_fr [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : B1:2E:13:63:45:86:A4:6F:1A:B2:60:68:37:58:2D:C4:AC:FD:94:97
cn_certigna_root_ca,ou_0002_48146308100036,o_dhimyotis,c_fr [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 2D:0D:52:14:FF:9E:AD:99:24:01:74:20:47:6E:6C:85:27:27:F5:43
cn_certum_ec384_ca,ou_certum_certification_authority,o_asseco_data_systems_sa,c_pl [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : F3:3E:78:3C:AC:DF:F4:A2:CC:AC:67:55:69:56:D7:E5:16:3C:E1:ED
cn_certum_trusted_network_ca,ou_certum_certification_authority,o_unizeto_technologies_sa,c_pl [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 07:E0:32:E0:20:B7:2C:3F:19:2F:06:28:A2:59:3A:19:A7:0F:06:9E
cn_certum_trusted_network_ca_2,ou_certum_certification_authority,o_unizeto_technologies_sa,c_pl [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : D3:DD:48:3E:2B:BF:4C:05:E8:AF:10:F5:FA:76:26:CF:D3:DC:30:92
cn_certum_trusted_root_ca,ou_certum_certification_authority,o_asseco_data_systems_sa,c_pl [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : C8:83:44:C0:18:AE:9F:CC:F1:87:B7:8F:22:D1:C5:D7:45:84:BA:E5
cn_cfca_ev_root,o_china_financial_certification_authority,c_cn [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : E2:B8:29:4B:55:84:AB:6B:58:C2:90:46:6C:AC:3F:B8:39:8F:84:83
cn_commscope_public_trust_ecc_root01,o_commscope,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 07:86:C0:D8:DD:8E:C0:80:98:06:98:D0:58:7A:EF:DE:A6:CC:A2:5D
cn_commscope_public_trust_ecc_root02,o_commscope,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 3C:3F:EF:57:0F:FE:65:93:86:9E:A0:FE:B0:F6:ED:8E:D1:13:C7:E5
cn_commscope_public_trust_rsa_root01,o_commscope,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 6D:0A:5F:F7:B4:23:06:B4:85:B3:B7:97:64:FC:AC:75:F5:33:F2:93
cn_commscope_public_trust_rsa_root02,o_commscope,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : EA:B0:E2:52:1B:89:93:4C:11:68:F2:D8:9A:AC:22:4C:A3:8A:57:AE
cn_comodo_certification_authority,o_comodo_ca_limited,l_salford,st_greater_manchester,c_gb [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 66:31:BF:9E:F7:4F:9E:B6:C9:D5:A6:0C:BA:6A:BE:D1:F7:BD:EF:7B
cn_comodo_ecc_certification_authority,o_comodo_ca_limited,l_salford,st_greater_manchester,c_gb [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 9F:74:4E:9F:2B:4D:BA:EC:0F:31:2C:50:B6:56:3B:8E:2D:93:C3:11
cn_comodo_rsa_certification_authority,o_comodo_ca_limited,l_salford,st_greater_manchester,c_gb [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : AF:E5:D2:44:A8:D1:19:42:30:FF:47:9F:E2:F8:97:BB:CD:7A:8C:B4
cn_digicert_assured_id_root_ca,ou_wwwdigicertcom,o_digicert_inc,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 05:63:B8:63:0D:62:D7:5A:BB:C8:AB:1E:4B:DF:B5:A8:99:B2:4D:43
cn_digicert_assured_id_root_g2,ou_wwwdigicertcom,o_digicert_inc,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : A1:4B:48:D9:43:EE:0A:0E:40:90:4F:3C:E0:A4:C0:91:93:51:5D:3F
cn_digicert_assured_id_root_g3,ou_wwwdigicertcom,o_digicert_inc,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : F5:17:A2:4F:9A:48:C6:C9:F8:A2:00:26:9F:DC:0F:48:2C:AB:30:89
cn_digicert_global_root_ca,ou_wwwdigicertcom,o_digicert_inc,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : A8:98:5D:3A:65:E5:E5:C4:B2:D7:D6:6D:40:C6:DD:2F:B1:9C:54:36
cn_digicert_global_root_g2,ou_wwwdigicertcom,o_digicert_inc,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : DF:3C:24:F9:BF:D6:66:76:1B:26:80:73:FE:06:D1:CC:8D:4F:82:A4
cn_digicert_global_root_g3,ou_wwwdigicertcom,o_digicert_inc,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 7E:04:DE:89:6A:3E:66:6D:00:E6:87:D3:3F:FA:D9:3B:E8:3D:34:9E
cn_digicert_high_assurance_ev_root_ca,ou_wwwdigicertcom,o_digicert_inc,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 5F:B7:EE:06:33:E2:59:DB:AD:0C:4C:9A:E6:D3:8F:1A:61:C7:DC:25
cn_digicert_tls_ecc_p384_root_g5,o_digicert__inc,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 17:F3:DE:5E:9F:0F:19:E9:8E:F6:1F:32:26:6E:20:C4:07:AE:30:EE
cn_digicert_tls_rsa4096_root_g5,o_digicert__inc,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : A7:88:49:DC:5D:7C:75:8C:8C:DE:39:98:56:B3:AA:D0:B2:A5:71:35
cn_digicert_trusted_root_g4,ou_wwwdigicertcom,o_digicert_inc,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : DD:FB:16:CD:49:31:C9:73:A2:03:7D:3F:C8:3A:4D:7D:77:5D:05:E4
cn_dtrust_br_root_ca_1_2020,o_dtrust_gmbh,c_de [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 1F:5B:98:F0:E3:B5:F7:74:3C:ED:E6:B0:36:7D:32:CD:F4:09:41:67
cn_dtrust_br_root_ca_2_2023,o_dtrust_gmbh,c_de [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 2D:B0:70:EE:71:94:AF:69:68:17:DB:79:CE:58:9F:A0:6B:96:F7:87
cn_dtrust_ev_root_ca_1_2020,o_dtrust_gmbh,c_de [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 61:DB:8C:21:59:69:03:90:D8:7C:9C:12:86:54:CF:9D:3D:F4:DD:07
cn_dtrust_ev_root_ca_2_2023,o_dtrust_gmbh,c_de [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : A5:5B:D8:47:6C:8F:19:F7:4C:F4:6D:6B:B6:C2:79:82:22:DF:54:8B
cn_dtrust_root_class_3_ca_2_2009,o_dtrust_gmbh,c_de [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 58:E8:AB:B0:36:15:33:FB:80:F7:9B:1B:6D:29:D3:FF:8D:5F:00:F0
cn_dtrust_root_class_3_ca_2_ev_2009,o_dtrust_gmbh,c_de [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 96:C9:1B:0B:95:B4:10:98:42:FA:D0:D8:22:79:FE:60:FA:B9:16:83
cn_emsign_ecc_root_ca__c3,o_emudhra_inc,ou_emsign_pki,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : B6:AF:43:C2:9B:81:53:7D:F6:EF:6B:C3:1F:1F:60:15:0C:EE:48:66
cn_emsign_ecc_root_ca__g3,o_emudhra_technologies_limited,ou_emsign_pki,c_in [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 30:43:FA:4F:F2:57:DC:A0:C3:80:EE:2E:58:EA:78:B2:3F:E6:BB:C1
cn_emsign_root_ca__c1,o_emudhra_inc,ou_emsign_pki,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : E7:2E:F1:DF:FC:B2:09:28:CF:5D:D4:D5:67:37:B1:51:CB:86:4F:01
cn_emsign_root_ca__g1,o_emudhra_technologies_limited,ou_emsign_pki,c_in [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 8A:C7:AD:8F:73:AC:4E:C1:B5:75:4D:A5:40:F4:FC:CF:7C:B5:8E:8C
cn_entrust_root_certification_authority,ou__c__2006_entrust__inc,ou_wwwentrustnetcps_is_incorporated_by_reference,o_entrust__inc,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : B3:1E:B1:B7:40:E3:6C:84:02:DA:DC:37:D4:4D:F5:D4:67:49:52:F9
cn_entrust_root_certification_authority__ec1,ou__c__2012_entrust__inc__for_authorized_use_only,ou_see_wwwentrustnetlegalterms,o_entrust__inc,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 20:D8:06:40:DF:9B:25:F5:12:25:3A:11:EA:F7:59:8A:EB:14:B5:47
cn_entrust_root_certification_authority__g2,ou__c__2009_entrust__inc__for_authorized_use_only,ou_see_wwwentrustnetlegalterms,o_entrust__inc,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 8C:F4:27:FD:79:0C:3A:D1:66:06:8D:E8:1E:57:EF:BB:93:22:72:D4
cn_eszigno_root_ca_2017,o_microsec_ltd,l_budapest,c_hu [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 89:D4:83:03:4F:9E:9A:48:80:5F:72:37:D4:A9:A6:EF:CB:7C:1F:D1
cn_firmaprofesional_ca_roota_web,o_firmaprofesional_sa,c_es [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : A8:31:11:74:A6:14:15:0D:CA:77:DD:0E:E4:0C:5D:58:FC:A0:72:A5
cn_gdca_trustauth_r5_root,o_guang_dong_certificate_authority_co_ltd,c_cn [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 0F:36:38:5B:81:1A:25:C3:9B:31:4E:83:CA:E9:34:66:70:CC:74:B4
cn_globalsign,o_globalsign,ou_globalsign_ecc_root_ca__r4 [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 6B:A0:B0:98:E1:71:EF:5A:AD:FE:48:15:80:77:10:F4:BD:6F:0B:28
cn_globalsign,o_globalsign,ou_globalsign_ecc_root_ca__r5 [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 1F:24:C6:30:CD:A4:18:EF:20:69:FF:AD:4F:DD:5F:46:3A:1B:69:AA
cn_globalsign,o_globalsign,ou_globalsign_root_ca__r3 [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : D6:9B:56:11:48:F0:1C:77:C5:45:78:C1:09:26:DF:5B:85:69:76:AD
cn_globalsign,o_globalsign,ou_globalsign_root_ca__r6 [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 80:94:64:0E:B5:A7:A1:CA:11:9C:1F:DD:D5:9F:81:02:63:A7:FB:D1
cn_globalsign_root_e46,o_globalsign_nvsa,c_be [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 39:B4:6C:D5:FE:80:06:EB:E2:2F:4A:BB:08:33:A0:AF:DB:B9:DD:84
cn_globalsign_root_r46,o_globalsign_nvsa,c_be [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 53:A2:B0:4B:CA:6B:D6:45:E6:39:8A:8E:C4:0D:D2:BF:77:C3:A2:90
cn_globaltrust_2020,o_ecommerce_monitoring_gmbh,c_at [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : D0:67:C1:13:51:01:0C:AA:D0:C7:6A:65:37:31:16:26:4F:53:71:A2
cn_go_daddy_root_certificate_authority__g2,o_godaddycom__inc,l_scottsdale,st_arizona,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 47:BE:AB:C9:22:EA:E8:0E:78:78:34:62:A7:9F:45:C2:54:FD:E6:8B
cn_gts_root_r1,o_google_trust_services_llc,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : E5:8C:1C:C4:91:3B:38:63:4B:E9:10:6E:E3:AD:8E:6B:9D:D9:81:4A
cn_gts_root_r2,o_google_trust_services_llc,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 9A:44:49:76:32:DB:DE:FA:D0:BC:FB:5A:7B:17:BD:9E:56:09:24:94
cn_gts_root_r3,o_google_trust_services_llc,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : ED:E5:71:80:2B:C8:92:B9:5B:83:3C:D2:32:68:3F:09:CD:A0:1E:46
cn_gts_root_r4,o_google_trust_services_llc,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 77:D3:03:67:B5:E0:0C:15:F6:0C:38:61:DF:7C:E1:3B:92:46:4D:47
cn_harica_tls_ecc_root_ca_2021,o_hellenic_academic_and_research_institutions_ca,c_gr [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : BC:B0:C1:9D:E9:98:92:70:19:38:57:E9:8D:A7:B4:5D:6E:EE:01:48
cn_harica_tls_rsa_root_ca_2021,o_hellenic_academic_and_research_institutions_ca,c_gr [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 02:2D:05:82:FA:88:CE:14:0C:06:79:DE:7F:14:10:E9:45:D7:A5:6D
cn_hellenic_academic_and_research_institutions_ecc_rootca_2015,o_hellenic_academic_and_research_institutions_cert_authority,l_athens,c_gr [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 9F:F1:71:8D:92:D5:9A:F3:7D:74:97:B4:BC:6F:84:68:0B:BA:B6:66
cn_hellenic_academic_and_research_institutions_rootca_2015,o_hellenic_academic_and_research_institutions_cert_authority,l_athens,c_gr [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 01:0C:06:95:A6:98:19:14:FF:BF:5F:C6:B0:B6:95:EA:29:E9:12:A6
cn_hipki_root_ca__g1,o_chunghwa_telecom_co__ltd,c_tw [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 6A:92:E4:A8:EE:1B:EC:96:45:37:E3:29:57:49:CD:96:E3:E5:D2:60
cn_hongkong_post_root_ca_3,o_hongkong_post,l_hong_kong,st_hong_kong,c_hk [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 58:A2:D0:EC:20:52:81:5B:C1:F3:F8:64:02:24:4E:C2:8E:02:4B:02
cn_identrust_commercial_root_ca_1,o_identrust,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : DF:71:7E:AA:4A:D9:4E:C9:55:84:99:60:2D:48:DE:5F:BC:F0:3A:25
cn_identrust_public_sector_root_ca_1,o_identrust,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : BA:29:41:60:77:98:3F:F4:F3:EF:F2:31:05:3B:2E:EA:6D:4D:45:FD
cn_isrg_root_x1,o_internet_security_research_group,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : CA:BD:2A:79:A1:07:6A:31:F2:1D:25:36:35:CB:03:9D:43:29:A5:E8
cn_isrg_root_x2,o_internet_security_research_group,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : BD:B1:B9:3C:D5:97:8D:45:C6:26:14:55:F8:DB:95:C7:5A:D1:53:AF
cn_izenpecom,o_izenpe_sa,c_es [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 2F:78:3D:25:52:18:A7:4A:65:39:71:B5:2C:A2:9C:45:15:6F:E9:19
cn_microsec_eszigno_root_ca_2009,o_microsec_ltd,l_budapest,c_hu [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 89:DF:74:FE:5C:F4:0F:4A:80:F9:E3:37:7D:54:DA:91:E1:01:31:8E
cn_microsoft_ecc_root_certificate_authority_2017,o_microsoft_corporation,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 99:9A:64:C3:7F:F4:7D:9F:AB:95:F1:47:69:89:14:60:EE:C4:C3:C5
cn_microsoft_rsa_root_certificate_authority_2017,o_microsoft_corporation,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 73:A5:E6:4A:3B:FF:83:16:FF:0E:DC:CC:61:8A:90:6E:4E:AE:4D:74
cn_naver_global_root_certification_authority,o_naver_business_platform_corp,c_kr [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 8F:6B:F2:A9:27:4A:DA:14:A0:C4:F4:8E:61:27:F9:C0:1E:78:5D:D1
cn_netlock_arany__class_gold__fc591tanc3basc3adtvc3a1ny,ou_tanc3basc3adtvc3a1nykiadc3b3k__certification_services_,o_netlock_kft,l_budapest,c_hu [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 06:08:3F:59:3F:15:A1:04:A0:69:A4:6B:A9:03:D0:06:B7:97:09:91
cn_oiste_wisekey_global_root_gb_ca,ou_oiste_foundation_endorsed,o_wisekey,c_ch [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 0F:F9:40:76:18:D3:D7:6A:4B:98:F0:A8:35:9E:0C:FD:27:AC:CC:ED
cn_oiste_wisekey_global_root_gc_ca,ou_oiste_foundation_endorsed,o_wisekey,c_ch [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : E0:11:84:5E:34:DE:BE:88:81:B9:9C:F6:16:26:D1:96:1F:C3:B9:31
cn_quovadis_root_ca_1_g3,o_quovadis_limited,c_bm [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 1B:8E:EA:57:96:29:1A:C9:39:EA:B8:0A:81:1A:73:73:C0:93:79:67
cn_quovadis_root_ca_2,o_quovadis_limited,c_bm [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : CA:3A:FB:CF:12:40:36:4B:44:B2:16:20:88:80:48:39:19:93:7C:F7
cn_quovadis_root_ca_2_g3,o_quovadis_limited,c_bm [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 09:3C:61:F3:8B:8B:DC:7D:55:DF:75:38:02:05:00:E1:25:F5:C8:36
cn_quovadis_root_ca_3,o_quovadis_limited,c_bm [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 1F:49:14:F7:D8:74:95:1D:DD:AE:02:C0:BE:FD:3A:2D:82:75:51:85
cn_quovadis_root_ca_3_g3,o_quovadis_limited,c_bm [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 48:12:BD:92:3C:A8:C4:39:06:E7:30:6D:27:96:E6:A4:CF:22:2E:7D
cn_sectigo_public_server_authentication_root_e46,o_sectigo_limited,c_gb [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : EC:8A:39:6C:40:F0:2E:BC:42:75:D4:9F:AB:1C:1A:5B:67:BE:D2:9A
cn_sectigo_public_server_authentication_root_r46,o_sectigo_limited,c_gb [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : AD:98:F9:F3:E4:7D:75:3B:65:D4:82:B3:A4:52:17:BB:6E:F5:E4:38
cn_secure_global_ca,o_securetrust_corporation,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 3A:44:73:5A:E5:81:90:1F:24:86:61:46:1E:3B:9C:C4:5F:F5:3A:1B
cn_securesign_root_ca12,o_cybertrust_japan_co__ltd,c_jp [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 7A:22:1E:3D:DE:1B:06:AC:9E:C8:47:70:16:8E:3C:E5:F7:6B:06:F4
cn_securesign_root_ca14,o_cybertrust_japan_co__ltd,c_jp [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : DD:50:C0:F7:79:B3:64:2E:74:A2:B8:9D:9F:D3:40:DD:BB:F0:F2:4F
cn_securesign_root_ca15,o_cybertrust_japan_co__ltd,c_jp [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : CB:BA:83:C8:C1:5A:5D:F1:F9:73:6F:CA:D7:EF:28:13:06:4A:07:7D
cn_securetrust_ca,o_securetrust_corporation,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 87:82:C6:C3:04:35:3B:CF:D2:96:92:D2:59:3E:7D:44:D9:34:FF:11
cn_security_communication_ecc_rootca1,o_secom_trust_systems_co_ltd,c_jp [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : B8:0E:26:A9:BF:D2:B2:3B:C0:EF:46:C9:BA:C7:BB:F6:1D:0D:41:41
cn_sslcom_ev_root_certification_authority_ecc,o_ssl_corporation,l_houston,st_texas,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 4C:DD:51:A3:D1:F5:20:32:14:B0:C6:C5:32:23:03:91:C7:46:42:6D
cn_sslcom_ev_root_certification_authority_rsa_r2,o_ssl_corporation,l_houston,st_texas,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 74:3A:F0:52:9B:D0:32:A0:F4:4A:83:CD:D4:BA:A9:7B:7C:2E:C4:9A
cn_sslcom_root_certification_authority_ecc,o_ssl_corporation,l_houston,st_texas,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : C3:19:7C:39:24:E6:54:AF:1B:C4:AB:20:95:7A:E2:C3:0E:13:02:6A
cn_sslcom_root_certification_authority_rsa,o_ssl_corporation,l_houston,st_texas,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : B7:AB:33:08:D1:EA:44:77:BA:14:80:12:5A:6F:BD:A9:36:49:0C:BB
cn_sslcom_tls_ecc_root_ca_2022,o_ssl_corporation,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 9F:5F:D9:1A:54:6D:F5:0C:71:F0:EE:7A:BD:17:49:98:84:73:E2:39
cn_sslcom_tls_rsa_root_ca_2022,o_ssl_corporation,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : EC:2C:83:40:72:AF:26:95:10:FF:0E:F2:03:EE:31:70:F6:78:9D:CA
cn_starfield_root_certificate_authority__g2,o_starfield_technologies__inc,l_scottsdale,st_arizona,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : B5:1C:06:7C:EE:2B:0C:3D:F8:55:AB:2D:92:F4:FE:39:D4:E7:0F:0E
cn_starfield_services_root_certificate_authority__g2,o_starfield_technologies__inc,l_scottsdale,st_arizona,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 92:5A:8F:8D:2C:6D:04:E0:66:5F:59:6A:FF:22:D8:63:E8:25:6F:3F
cn_swisssign_gold_ca__g2,o_swisssign_ag,c_ch [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : D8:C5:38:8A:B7:30:1B:1B:6E:D4:7A:E6:45:25:3A:6F:9F:1A:27:61
cn_swisssign_rsa_tls_root_ca_2022__1,o_swisssign_ag,c_ch [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 81:34:0A:BE:4C:CD:CE:CC:E7:7D:CC:8A:D4:57:E2:45:A0:77:5D:CE
cn_szafir_root_ca2,o_krajowa_izba_rozliczeniowa_sa,c_pl [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : E2:52:FA:95:3F:ED:DB:24:60:BD:6E:28:F3:9C:CC:CF:5E:B3:3F:DE
cn_telekom_security_tls_ecc_root_2020,o_deutsche_telekom_security_gmbh,c_de [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : C0:F8:96:C5:A9:3B:01:06:21:07:DA:18:42:48:BC:E9:9D:88:D5:EC
cn_telekom_security_tls_rsa_root_2023,o_deutsche_telekom_security_gmbh,c_de [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 54:D3:AC:B3:BD:57:56:F6:85:9D:CE:E5:C3:21:E2:D4:AD:83:D0:93
cn_telia_root_ca_v2,o_telia_finland_oyj,c_fi [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : B9:99:CD:D1:73:50:8A:C4:47:05:08:9C:8C:88:FB:BE:A0:2B:40:CD
cn_teliasonera_root_ca_v1,o_teliasonera [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 43:13:BB:96:F1:D5:86:9B:C1:4E:6A:92:F6:CF:F6:34:69:87:82:37
cn_trustasia_global_root_ca_g3,o_trustasia_technologies__inc,c_cn [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 63:CF:B6:C1:27:2B:56:E4:88:8E:1C:23:9A:B6:2E:81:47:24:C3:C7
cn_trustasia_global_root_ca_g4,o_trustasia_technologies__inc,c_cn [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 57:73:A5:61:5D:80:B2:E6:AC:38:82:FC:68:07:31:AC:9F:B5:92:5A
cn_trustasia_tls_ecc_root_ca,o_trustasia_technologies__inc,c_cn [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : B5:EC:39:F3:A1:66:37:AE:C3:05:94:57:E2:BE:11:BE:B7:A1:7F:36
cn_trustasia_tls_rsa_root_ca,o_trustasia_technologies__inc,c_cn [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : A5:46:50:C5:62:EA:95:9A:1A:A7:04:6F:17:58:C7:29:53:3D:03:FA
cn_trustwave_global_certification_authority,o_trustwave_holdings__inc,l_chicago,st_illinois,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 2F:8F:36:4F:E1:58:97:44:21:59:87:A5:2A:9A:D0:69:95:26:7F:B5
cn_trustwave_global_ecc_p256_certification_authority,o_trustwave_holdings__inc,l_chicago,st_illinois,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : B4:90:82:DD:45:0C:BE:8B:5B:B1:66:D3:E2:A4:08:26:CD:ED:42:CF
cn_trustwave_global_ecc_p384_certification_authority,o_trustwave_holdings__inc,l_chicago,st_illinois,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : E7:F3:A3:C8:CF:6F:C3:04:2E:6D:0E:67:32:C5:9E:68:95:0D:5E:D2
cn_ttelesec_globalroot_class_2,ou_tsystems_trust_center,o_tsystems_enterprise_services_gmbh,c_de [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 59:0D:2D:7D:88:4F:40:2E:61:7E:A5:62:32:17:65:CF:17:D8:94:E9
cn_ttelesec_globalroot_class_3,ou_tsystems_trust_center,o_tsystems_enterprise_services_gmbh,c_de [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 55:A6:72:3E:CB:F2:EC:CD:C3:23:74:70:19:9D:2A:BE:11:E3:81:D1
cn_tubitak_kamu_sm_ssl_kok_sertifikasi__surum_1,ou_kamu_sertifikasyon_merkezi__kamu_sm,o_turkiye_bilimsel_ve_teknolojik_arastirma_kurumu__tubitak,l_gebze__kocaeli,c_tr [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 31:43:64:9B:EC:CE:27:EC:ED:3A:3F:0B:8F:0D:E4:E8:91:DD:EE:CA
cn_tuntrust_root_ca,o_agence_nationale_de_certification_electronique,c_tn [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : CF:E9:70:84:0F:E0:73:0F:9D:F6:0C:7F:2C:4B:EE:20:46:34:9C:BB
cn_twca_cyber_root_ca,ou_root_ca,o_taiwanca,c_tw [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : F6:B1:1C:1A:83:38:E9:7B:DB:B3:A8:C8:33:24:E0:2D:9C:7F:26:66
cn_twca_global_root_ca,ou_root_ca,o_taiwanca,c_tw [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 9C:BB:48:53:F6:A4:F6:D3:52:A4:E8:32:52:55:60:13:F5:AD:AF:65
cn_twca_root_certification_authority,ou_root_ca,o_taiwanca,c_tw [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : CF:9E:87:6D:D3:EB:FC:42:26:97:A3:B5:A3:7A:A0:76:A9:06:23:48
cn_uca_extended_validation_root,o_unitrust,c_cn [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : A3:A1:B0:6F:24:61:23:4A:E3:36:A5:C2:37:FC:A6:FF:DD:F0:D7:3A
cn_uca_global_g2_root,o_unitrust,c_cn [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 28:F9:78:16:19:7A:FF:18:25:18:AA:44:FE:C1:A0:CE:5C:B6:4C:8A
cn_usertrust_ecc_certification_authority,o_the_usertrust_network,l_jersey_city,st_new_jersey,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : D1:CB:CA:5D:B2:D5:2A:7F:69:3B:67:4D:E5:F0:5A:1D:0C:95:7D:F0
cn_usertrust_rsa_certification_authority,o_the_usertrust_network,l_jersey_city,st_new_jersey,c_us [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 2B:8F:1B:57:33:0D:BB:A2:D0:7A:6C:51:F7:0E:E9:0D:DA:B9:AD:8E
cn_vtrus_ecc_root_ca,o_itruschina_co_ltd,c_cn [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : F6:9C:DB:B0:FC:F6:02:13:B6:52:32:A6:A3:91:3F:16:70:DA:C3:E1
cn_vtrus_root_ca,o_itruschina_co_ltd,c_cn [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 84:1A:69:FB:F5:CD:1A:25:34:13:3D:E3:F8:FC:B8:99:D0:C9:14:B7
ou_ac_raiz_fnmtrcm,o_fnmtrcm,c_es [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : EC:50:35:07:B2:15:C4:95:62:19:E2:A8:9A:5B:42:99:2C:4C:2C:20
ou_certsign_root_ca,o_certsign,c_ro [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : FA:B7:EE:36:97:26:62:FB:2D:B0:2A:F6:BF:03:FD:E8:7C:4B:2F:9B
ou_certsign_root_ca_g2,o_certsign_sa,c_ro [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 26:F9:93:B4:ED:3D:28:27:B0:B9:4B:A7:E9:15:1D:A3:8D:92:E5:32
ou_epki_root_certification_authority,o_chunghwa_telecom_co__ltd,c_tw [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 67:65:0D:F1:7E:8E:7E:5B:82:40:A4:F4:56:4B:CF:E2:3D:69:C6:F0
ou_security_communication_rootca2,o_secom_trust_systems_co_ltd,c_jp [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 12:34:56:78:90:12:34:56:78:90:12:34:56:78:90:12:34:56:78:90
ac racine myOrganization public 2030 [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 12:34:56:78:90:12:34:56:78:90:12:34:56:78:90:12:34:56:78:90
ac2 myOrganization racine [jdk], 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 12:34:56:78:90:12:34:56:78:90:12:34:56:78:90:12:34:56:78:90
ac2 myOrganization serveurs-2, 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 12:34:56:78:90:12:34:56:78:90:12:34:56:78:90:12:34:56:78:90
ac3 myOrganization racine, 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 12:34:56:78:90:12:34:56:78:90:12:34:56:78:90:12:34:56:78:90
ac3 myOrganization serveurs, 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 12:34:56:78:90:12:34:56:78:90:12:34:56:78:90:12:34:56:78:90
ac myOrganization server, 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 12:34:56:78:90:12:34:56:78:90:12:34:56:78:90:12:34:56:78:90
ac serveur myIDE bundle, 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 12:34:56:78:90:12:34:56:78:90:12:34:56:78:90:12:34:56:78:90
myIDE appli myOrganization, 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 12:34:56:78:90:12:34:56:78:90:12:34:56:78:90:12:34:56:78:90
myRepo appli myOrganization, 10 juin 2026, trustedCertEntry, 
Empreinte du certificat (SHA1) : 12:34:56:78:90:12:34:56:78:90:12:34:56:78:90:12:34:56:78:90

Thanks for your help :tumbler_glass:

9

Your truststore is not empty, that is clear. I just analysed your stacktrace again and it seems like it is having issues loading your truststore. In the stacktrace you can see it is using InflatableX509ExtendedTrustManager. This will be initially configured with a DummyX509ExtendedTrustManager and later on replaced with the actual trustmanager for the provided truststore. It seems like that is not happening. I am not an expert in Sonar and configuration of it. I need to ping/pull in @nicolas.quinquenel

Nicolas, do you happen to see any misconfiguration of Sonar in Eclipse? It seems like the truststore is not being loaded at all. Maybe incorrect truststore path, password, or maybe the absence of specifying the truststore type?