For mostly learning purposes so far, I'm attempting to generate a SHA2 Certificate using Java's keytool. However, when I generate the keys, it says that Certificate Fingerprint is SHA1, not SHA2.
keytool -genkey -alias test_sha2_rsa_key -keyalg RSA -keysize 2048 -keystore .keystore -sigalg "SHA256withRSA" Here is the result when I list the keys.
keytool -list Enter keystore password: Keystore type: JKS Keystore provider: SUN Your keystore contains 1 entry test_sha2_rsa_key, Jul 6, 2016, PrivateKeyEntry, Certificate fingerprint (SHA1): DD:9E:55:B7:90:9F:91:6C:68:D3:5C:24:E7:D4:45:D1:7D:8C:3A:5A Am I reading this wrong, or doing this wrong?
-list -vto see (most) details of the cert, including the sigalg.