| Certificate | Abstract class for managing a variety of identity certificates. | 
| CertificateEncodingException | Certificate Encoding Exception. | 
| CertificateException | This exception indicates one of a variety of certificate problems. | 
| CertificateExpiredException | Certificate Expired Exception. | 
| CertificateFactory | This class defines the functionality of a certificate factory, which is
 used to generate certificate, certification path (CertPath)
 and certificate revocation list (CRL) objects from their encodings. | 
| CertificateFactorySpi | This class defines the Service Provider Interface (SPI)
 for the CertificateFactoryclass. | 
| CertificateNotYetValidException | Certificate is not yet valid exception. | 
| CertificateParsingException | Certificate Parsing Exception. | 
| CertPath | An immutable sequence of certificates (a certification path). | 
| CertPathBuilder | A class for building certification paths (also known as certificate chains). | 
| CertPathBuilderException | An exception indicating one of a variety of problems encountered when
 building a certification path with a CertPathBuilder. | 
| CertPathBuilderResult | A specification of the result of a certification path builder algorithm. | 
| CertPathBuilderSpi |  | 
| CertPathChecker | Performs one or more checks on each Certificateof aCertPath. | 
| CertPathParameters | A specification of certification path algorithm parameters. | 
| CertPathValidator | A class for validating certification paths (also known as certificate
 chains). | 
| CertPathValidatorException | An exception indicating one of a variety of problems encountered when
 validating a certification path. | 
| CertPathValidatorException.BasicReason | The BasicReason enumerates the potential reasons that a certification
 path of any type may be invalid. | 
| CertPathValidatorException.Reason | The reason the validation algorithm failed. | 
| CertPathValidatorResult | A specification of the result of a certification path validator algorithm. | 
| CertPathValidatorSpi |  | 
| CertSelector | A selector that defines a set of criteria for selecting
 Certificates. | 
| CertStore | A class for retrieving Certificates andCRLs
 from a repository. | 
| CertStoreException | An exception indicating one of a variety of problems retrieving
 certificates and CRLs from a CertStore. | 
| CertStoreParameters | A specification of CertStoreparameters. | 
| CertStoreSpi | The Service Provider Interface  (SPI )
 for the  CertStore class. | 
| CRL | This class is an abstraction of certificate revocation lists (CRLs) that
 have different formats but important common uses. | 
| CRLException | CRL (Certificate Revocation List) Exception. | 
| CRLReason |  | 
| CRLSelector | A selector that defines a set of criteria for selecting CRLs. | 
| Extension | This interface represents an X.509 extension. | 
| PKIXCertPathChecker | An abstract class that performs one or more checks on an
 X509Certificate. | 
| PKIXCertPathValidatorResult | This class represents the successful result of the PKIX certification
 path validation algorithm. | 
| PKIXParameters | Parameters used as input for the PKIX CertPathValidatoralgorithm. | 
| PKIXReason | The PKIXReasonenumerates the potential PKIX-specific reasons
 that an X.509 certification path may be invalid according to the PKIX
 (RFC 5280) standard. | 
| PKIXRevocationChecker.Option | Various revocation options that can be specified for the revocation
 checking mechanism. | 
| PolicyNode | An immutable valid policy tree node as defined by the PKIX certification
 path validation algorithm. | 
| PolicyQualifierInfo | An immutable policy qualifier represented by the ASN.1 PolicyQualifierInfo
 structure. | 
| TrustAnchor | A trust anchor or most-trusted Certification Authority (CA). | 
| URICertStoreParameters | Parameters used as input for CertStorealgorithms which use
 information contained in a URI to retrieve certificates and CRLs. | 
| X509Certificate | 
 Abstract class for X.509 certificates. | 
| X509CRLEntry | Abstract class for a revoked certificate in a CRL (Certificate
 Revocation List). | 
| X509Extension | Interface for an X.509 extension. |