How to remove only one certificate from a certificate chain in a Java keystore

JKS PKCS12 ( ):

keytool -importkeystore -srckeystore old.jks -destkeystore old.p12 -deststoretype pkcs12

PEM PKCS12:

openssl pkcs12 -in old.p12 -out pemfile.pem -nodes

pemfile.pem ( " " ).

PEM PKCS12. cert/key , . "tomcat", .

openssl pkcs12 -export -in pemfile.pem -name tomcat -out new.p12

, PKCS12 JKS:

keytool -importkeystore -srckeystore new.p12 -destkeystore new.jks -srcstoretype pkcs12

new.jks - , .