Support non-default Keystore types for Client authentication.

The `AuthConfig.certificate()` method only supports the system default Keystore type (typically 'jks'). That method should accept an optional parameter specifying a keystore type (e.g. 'PKCS12'), falling back to Keystore.getDefaultType() if no value is provided.
