step certificate fingerprint reads a certificate and prints to STDOUT the
certificate SHA256 of the raw certificate.
If crt-file contains multiple certificates (i.e., it is a certificate
"bundle") the fingerprint of the first certificate in the bundle will be
printed. Pass the --bundle option to print all fingerprints in the order in
which they appear in the bundle.
A certificate PEM file, usually the root certificate.
Root certificate(s) that will be used to verify the
authenticity of the remote server.
roots is a case-sensitive string and may be one of:
file: Relative or full path to a file. All certificates in the file will be used for path validation.
list of files: Comma-separated list of relative or full file paths. Every PEM encoded certificate from each file will be used for path validation.
directory: Relative or full path to a directory. Every PEM encoded certificate from each file in the directory will be used for path validation.
Print all fingerprints in the order in which they appear in the bundle.
Use an insecure client to retrieve a remote peer certificate. Useful for
debugging invalid certificates remotely.
TLS Server Name Indication that should be sent to request a specific certificate from the server.
The format of the fingerprint, it must be "hex", "base64", "base64-url", "base64-raw", "base64-url-raw" or "emoji".
Use the SHA-1 hash algorithm to hash the certificate. Requires --insecure flag.