The Java keytool command can only handle importing single individual certificates. The OpenShift ca bundle certificates can contain multiple ca certificates.
When importing the ca certificate from OpenShift, the Java keytool command would only import the first certificate and ignore the rest.
Instead of directly importing the CA certicate from OpenShift directly, we need to split up the certificate into individual certificates and load them individually.
Hawkular Metrics can now trust certificates signed by any of the CA certificates in the OpenShift CA bundle.