bash-4.4.18: registering info file /usr/pkg/info/bash.info libunistring-0.9.9: registering info file /usr/pkg/info/libunistring.info libidn2-2.0.4: registering info file /usr/pkg/info/libidn2.info gmake-4.1nb3: registering info file /usr/pkg/info/make.info libffi-3.2.1nb4: registering info file /usr/pkg/info/libffi.info =========================================================================== $NetBSD: MESSAGE,v 1.5 2014/08/10 10:47:42 wiz Exp $ Execute this command to extract and rehash all CA root certificates distributed by the Mozilla Project, so that they can be used by third party applications using OpenSSL. It also creates a single file certificate bundle in PEM format which can be used by applications using GnuTLS. # mozilla-rootcerts install To mark these certificates as trusted for users of gnupg2, do the following (assuming default PKG_SYSCONFBASE and a Bourne shell): # mkdir -p /usr/pkg/etc/gnupg # cd /usr/pkg/etc/gnupg # for c in /etc/openssl/certs/*.pem; do > openssl x509 -in $c -noout -fingerprint|sed 's|^.*=\(.*\)|\1 S|' > done > trustlist.txt ===========================================================================