Current certificates in pfx format has the private key encrypted with FIPS compliant algorhithm but the keytool(jvm) and openssl bundled with VIPEG 9.9.x does not support them resulting in bad password error thus fail to import.

Use openssl 1.1.1 or 3.x to convert the pkcs12 to PEM format. (VIPEG 9.10 and 9.11 is bundled with OpenSSL v3.0)
Then use openssl on 9.9.x to convert PEM to pkcs12 and import.

Note: openssl binary is found in "{VIP_Enterprise_Gateway}/tools" folder.