cacerts - support individual file per CA

globalsign / est

An implementation of the Enrollment over Secure Transport (EST) certificate enrollment protocol

MIT License

42 stars 25 forks source link

Closed Jmennius closed 3 years ago

Jmennius commented 3 years ago

It is often required to have every CA certificate in its own file, so instead of splitting them manually (which is clunky) - provide this option.

A new flag, sepout, enables this mode and sets a prefix for the filename which are formatted according to the following:

<prefix>-ca-root.pem - for root CA
<prefix>-ca-<index>.pem - for subordinate CA, where index is based on ascending order of NotBefore

Jmennius commented 3 years ago

I'd like to somehow specify that sepout is basically in conflict with rootout/out flags.. how can we do that?

Jmennius commented 3 years ago

Removed branch by accident, see #21...