This option can be set to a file (PEM format) containing CA certificates of root CAs to trust to sign certificates or intermediate CA certificates. This path is relative to if the path does not start with a /. tls certfile tls crlfile tls dh params file tls enabled tls keyfile tls/ca.pem