Client migrated to SHA2 certs and I started seeing requests failing with java.net.SocketException

Application client migrated to SHA2 certs and our API requests started failing with java.net.SocketException.

All these days, I never configured any certs in Ready API(we provided only Oauth credentials) and it was just working fine.

Client provided certs without any passwords and I tried to add them in WS keystore, but it was asking for a password.

I tried with the default password for certs(changeit) and it failed with bad password error.

I am not sure if I there is a way to configure these certs without providing any password.

It will be really helpful, if someone can guide me in the right direction.