How to get the Certificate associated with a JWT signing key

This topic has 1 reply, 1 voice, and was last updated 3 years, 2 months ago by Andrew.

  • Author
  • #25842

    Hi There,

    I have a JWT that is signed with the public key specified by the kid in the token and accessible via the JWK_URI. Using I can validate that this works.

    I have a 3rd party that’s receiving a bearer token signed by AM 6.5 and wants the public certificate associated with the public key specified by the kid.

    Where do I get this from? I exported the test alias certificate from the local AM jceks store but that doesn’t seem to match up.


    After exporting every certificate in the JKS and JCEKS ketstores I managed to find the one I was looking for and using to verify. The default installation uses rsajwtsigningkey.

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic.

©2022 ForgeRock - we provide an identity and access platform to secure every online relationship for the enterprise market, educational sector and even entire countries. Click to view our privacy policy and terms of use.

Log in with your credentials

Forgot your details?