This article describes how to manage truststores in Nexus Timestamp Server.
A truststore contains one or more CA certificate which are considered trusted by the entity that uses the truststore. It is of crucial importance that only correct and trusted CA certificates are added to the truststores. Use JKS (Java KeyStore) stores as trust stores, or just point out a directory (see Service configuration in Nexus Timestamp Server) containing the certificates to trust. The certificates shall be in DER-format.
Add a CA certificate to the truststore
Copy the certificate file to the configured directory.