- ssl-default-certificate-authorities #!optional FILEparameter
- ssl-default-certificate-authority-directory #!optional DIRECTORYparameter
These parameters can be used to override the default file (for example, /etc/ssl/cert.pem) and directory (for example, /etc/ssl/certs) containing all trusted CA certificates. When not customized, the OpenSSL functions SSL_CTX_set_default_verify_paths and SSL_CTX_load_verify_locations are used to determine sensible default locations.