step certificate fingerprint

NAME

step certificate fingerprint – print the fingerprint of a certificate

USAGE

step certificate fingerprint crt-file

DESCRIPTION

step certificate fingerprint reads a certificate and prints to STDOUT the certificate SHA256 of the raw certificate.

POSITIONAL ARGUMENTS

crt-file
A certificate PEM file, usually the root certificate.

OPTIONS

–roots=roots
Root certificate(s) that will be used to verify the authenticity of the remote server.

roots is a case-sensitive string and may be one of:

file
Relative or full path to a file. All certificates in the file will be used for path validation.
list of files
Comma-separated list of relative or full file paths. Every PEM encoded certificate from each file will be used for path validation.
directory
Relative or full path to a directory. Every PEM encoded certificate from each file in the directory will be used for path validation.
–insecure=value
Use an insecure client to retrieve a remote peer certificate. Useful for debugging invalid certificates remotely.

EXAMPLES

Get the fingerprint for a root certificate:

$ step certificate fingerprint /path/to/root_ca.crt
0d7d3834cf187726cf331c40a31aa7ef6b29ba4df601416c9788f6ee01058cf3

Get the fingerprint for a remote certificate:

$ step certificate fingerprint https://smallstep.com
0d7d3834cf187726cf331c40a31aa7ef6b29ba4df601416c9788f6ee01058cf3