The

tool downloads the certdata.txt file from Mozilla's source tree, then parses certdata.txt and extracts CA Root Certificates into PEM format. These are then processed with the OpenSSL commandline tool to produce the final ca-bundle.crt file.

The following options are supported by

backup an existing version of ca-bundle.crt

print version info about used modules

print license info about certdata.txt

no download of certdata.txt (to use existing)

be really quiet (no progress output at all)

include plain text listing of certificates

unlink (remove) certdata.txt after processing

be verbose and print out processed CAs

was based on the parse-certs script written by

and hacked by

This manual page was written by

This HTML page was made with roffit.