Java keystore managers

In case that someone needs more realistic Private Key Infrastructure (PKI) not only self-signed certificate from "SnakeOil" :-)

Portecle - let you use GUI key manager for java keystore
CSR Tool - another tool
API to generate CSR - how to java sourcecode
Verising CSR Check - just a real check from real CA

Use case to consider:

I want to be able to verify that certain public key infrastructure  works as expected I should follow real world CA scenario as possible.
I need:

1. self signed root CA CERT
2. client key pair
3. client to create certificate signing request (CSR)
4. CA server to verify elegibility for CERT with particular attributes
5. CA server to issue (sign) a CERT
6. client to deploy CERT into own infrastructure

After deployment (semi-/full-automation) to target locations and key stores.

1. Let the client verify server by CA of CERT
2. Let the server verify client by CA of CERT

Another scenario CASD pull, push mode... to be illustrated and finished.