After receiving the signed certificate of your site, the Hub's CA certificate, and the Hub's HTTPS certificate, you will need to import them into your shrine.keystore. Navigating to the shrine.keystore file, you will need to run these commands in order:

To Import the Hub's Central Authority (CA) certificate:

$ keytool -import -v -alias $HUB_CA_CERT_ALIAS -file $HUB_CA_CERT_ALIAS.crt -keystore shrine.keystore -storepass $KEYSTORE_PASSWORD

To Import the Hub's HTTPS certificate:

$ keytool -import -v -alias $HUB_HTTPS_CERT_ALIAS -file $HUB_HTTPS_CERT_ALIAS.crt -keystore shrine.keystore -storepass $KEYSTORE_PASSWORD

To Import Your Site's Signed Private Certificate:

$ keytool -import -v -alias $KEYSTORE_ALIAS -file $KEYSTORE_ALIAS.crt -keystore shrine.keystore -storepass $KEYSTORE_PASSWORD -keypass $KEYSTORE_PASSWORD -trustcacerts

Please note that the certificate that the Hub has signed will expire 3 years from the date of signing. Set up a reminder so that you can renew the certificate when the date approaches.