I would like to find the format for the ca_list_file. Don’t find any information about it on the web.
I believe it is an OpenSSL CAFile, see /docs/man1.0.2/man1/openssl-verify.html
I.E. it is just all the CA certificates concatenated together, and in PEM format.
Excellent. That was what I conjectured. Surprise! Replacing ca_list_path with ca_list_file with only 2 certiicates cleared the “not trusted” error I was getting with one of the certificates. Only thing I can figure is there was latency due to so many certificates in the folder.