Copy the cacerts file that ships with Java.
Use either the keytool command or the InstallCert application to add certficates or CAs as needed.
Then use the -Djavax.net.ssl.trustStore="file path to new truststore" -Djavax.net.ssl.trustStorePassword="password for new truststore" VM arguments as needed when you start your application.