java - Paypal certificate upgrade to sha256 -

paypal has updated sandbox api endpoint , certificate use sha256 instead of sha1. migrate application (which connects paypal express checkout) use sha256,

a) deleted , downloaded new certificate paypal account , converted .p12 format using openssl confirmed certificate using sha256withrsa

b) confirmed /etc/ssl/certs/ca-certs.crt having verisign g5 ca certificate given in link https://gist.github.com/robglas/3ef9582c6292470a1743

still unable connect paypal sandbox java code uses httpclient. failing during handshake

in java code - using sslcontext.getinstance("ssl")

using custom truststore

class customtrustmanager implements x509trustmanager {  public boolean checkclienttrusted(java.security.cert.x509certificate[] chain) {     return true; }  public boolean isservertrusted(java.security.cert.x509certificate[] chain) {     return true; }  public java.security.cert.x509certificate[] getacceptedissuers() {     return null; }  public void checkclienttrusted(java.security.cert.x509certificate[] chain, string authtype) { }  public void checkservertrusted(java.security.cert.x509certificate[] chain, string authtype) { } 

}

i using keymanagerfactory of instance sunx509 , initializing pkcs12 keystore.

am missing . please help!

this more suitable comment, don't have enough reputation. had similar problems in past other service problem java 7 uses old ssl algorithm default, try using java 8 if can. if have stick current java version, try using different algorithms or see if can obtain information ssl configurations paypal. link might help