PkNewCertificate

```
public interface PkNewCertificate
```
This interface allows an End Entity to create a personal certificate with selected extensions signed by the specified signing certificate.

Method Summary

All Methods Instance Methods Abstract Methods
Modifier and Type	Method and Description
`X509Certificate[]`	`getCertificateChain()` Extract the personal Certificate chain
`PrivateKey`	`getKey()` Extract the private key for the personal certificate
`PublicKey`	`getPublicKey()` Extract the public key
`String`	`getSigAlg()` Extract the signature algorithm
`byte[]`	`getSubjectKeyIdentifier()` Extract the subject public key identifier
`String`	`getSubjectName()` Extract the subject name
`void`	`setToKeyStore(String alias, String password, KeyStore ks)` Store this personal certificate in a keystore

- Method Detail
  - getKey
```
PrivateKey getKey()
```
    Extract the private key for the personal certificate
    
    Returns:
    
    the private key of the key pair created for this certificate
  - getCertificateChain
```
X509Certificate[] getCertificateChain()
```
    Extract the personal Certificate chain
    
    Returns:
    
    the X509 certificate chain
  - getPublicKey
```
PublicKey getPublicKey()
```
    Extract the public key
    
    Returns:
    
    the X509 public key
  - getSubjectName
```
String getSubjectName()
```
    Extract the subject name
    
    Returns:
    
    the subject Distinguished Name as a String
  - getSigAlg
```
String getSigAlg()
```
    Extract the signature algorithm
    
    Returns:
    
    the string naming the certificate signing algorithm
  - getSubjectKeyIdentifier
```
byte[] getSubjectKeyIdentifier()
```
    Extract the subject public key identifier
    
    Returns:
    
    the byte array containing the generated subject key identifier This uniquely identifies the private key corresponding to this certificate without exposing it
  - setToKeyStore
```
void setToKeyStore(String alias,
                   String password,
                   KeyStore ks)
            throws com.ibm.security.certclient.base.PkException
```
    Store this personal certificate in a keystore
    
    Parameters:
    
    alias - label to identify certificate in keystore
    
    password - key protection password
    
    ks - keystore where key is to be stored
    
    Throws:
    
    com.ibm.security.certclient.base.PkException

getKey

getCertificateChain

getPublicKey

getSubjectName

getSigAlg

getSubjectKeyIdentifier

setToKeyStore