multiple cert in a file?

Question

I have a file which contains:

-----BEGIN CERTIFICATE-----
(many lines of 64 bytes)
-----END CERTIFICATE-----

I use keytool.exe -printcert -file (myfile) it outputs like this

Certificate[1]:
Owner: CN=www.mydomain.xxxxxx  

(bah bah bah............)  
(bah bah bah............)  

Certificate[2]:
Owner: CN=Thawte SSL CA, O="Thawte, Inc.", C=US  

(bah bah bah............)  
(bah bah bah............)  

Certificate[3]:
Owner: CN=thawte Primary Root CA, OU="(c) 2006 thawte, Inc. - For authorized use only", OU=Certification Services Division, O="thawte, Inc.", C=US  

(bah bah bah............)  
(bah bah bah............)  

Is it normal that it contains 3 certs?
Is it called cert chain?
What can I do if I want to import this file to a keystore?
I've tried over and over again using

keytool.exe -import -alias (myalias) -trustcacerts -file (thisfile)  -keystore (mykeystore)`  

but it keeps telling me

 java.lang.Exception: Input not an X.509 certificate

Answer 1

The keytool requires certificate chains to be provided in PKCS#7 format (usually .p7b file extension) but you have it as a PEM file (which is rather used by software like Apache, nginx etc.).

From the keytool manual (-importcert option):

-importcert:
Reads the certificate or certificate chain (where the latter is supplied in a PKCS#7 formatted reply) ...

---

To convert the file you can use the openssl utility (if you have it at hand):

openssl crl2pkcs7 -certfile cert.pem -out cert.p7b -nocrl

Where cert.pem is your current certificate file and cert.p7b the one to use for the import.