Contribute in GitHub:
Open doc issue|Edit online
Public/private keys and certificates
You can learn more about public/private keys, how do they work independently, and with each other through the information provided here.
SSL and asymmetric encryption algorithms such as RSA (which is the default encryption algorithm of the Server) use public/private keys. Public and private keys have a one-to-one correspondence - matching public and private keys are called a "key pair".
Normally inside a keystore a public key comes wrapped in an X.509 certificate. Most keystore operations actually involve the whole public key certificate and not only the public key.
Again in most cases inside a keystore a private key is accompanied by the corresponding public key certificate.