If you’re trying to do stuff with the Java default system keystore (cacerts), then the default password is changeit.
You can list keys without needing the password (even if it prompts you) so don’t take that as an indication that it is blank.
(Incidentally who in the history of Java ever has changed the default keystore password? They should have left it blank.)