server.xml
<Connector
port="8443"
protocol="org.apache.coyote.http11.Http11NioProtocol"
SSLEnabled="true">
<SSLHostConfig>
<Certificate
certificateFile="conf/server.crt"
certificateKeyFile="conf/server.key"
certificateKeyPassword="your_key_passphrase"
type="RSA" />
</SSLHostConfig>
</Connector>
certificateKeyFile points to your .key file.certificateFile points to your .crt/.cer server certificate.certificateKeyPassword is the passphrase protecting the private key; omit it if your key is unencrypted.
