create private key using existing app signing key from Java KeyStore

While uploading the app bundle to production, it is essential that the app bundle must be signed with app signing.

to perform this step and generate a private key using the existing app signing key from Java KeyStore, follow the following instruction.

download the Java PEPK tool.
to download PEPK too, go to your https://play.google.com/console
select the project
- go to App Integrity -> App signing section
- there you will find an option as “Use existing app signing key from Java KeyStore”
- click on that and download it.
now, move to the folder where you downloaded the PEPK tool.
open the terminal and execute the following command.

"java -jar pepk.jar --keystore=/PATH_TO_KEYSTORE_FILE/keystore_name.keystore --alias=alpha_ask 
--output=/PATH_TO_PRIVATE_KEY_FILE/private_key.pem 
--encryptionkey=eb10fe8f7c7c9df715022017b00c6471f8ba8170b13049a11e6c09ffe3056a104a3bbe4ac5a955f4ba4fe93fc8cef27558a3eb9d2a529a2092761fb833b656cd48b9de6a"

"java -jar pepk.jar --keystore=/PATH_TO_KEYSTORE_FILE/keystore_name.keystore --alias=alpha_ask

--output=/PATH_TO_PRIVATE_KEY_FILE/private_key.pem

--encryptionkey=eb10fe8f7c7c9df715022017b00c6471f8ba8170b13049a11e6c09ffe3056a104a3bbe4ac5a955f4ba4fe93fc8cef27558a3eb9d2a529a2092761fb833b656cd48b9de6a"

after this, you will find your private_key.pem at your PATH_TO_PRIVATE_KEY_FILE.
you need to take this file and upload it to the Upload private key option.

Updated on May 11, 2023