Mark
Keytool is just a wrapper around JCE api, so
you should be able to use certicom as the provider...
When you run keytool, you should add certicom as a provider. you can do this by using
keytool -genkey
-sigalg "MD5withRSA"
-provider "com.certicom.SecurityProvider()"
-alias "myAlias" etc. etc.
I'm not sure if keytool will use the security.provider flag in the java.security file in $JAVA_HOME/jre/lib/security
--Lewin