macOS
brew install certigolocal Homebrew formula metadata
sudo port install certigoMacPorts ports tree · sysutils/certigo/Portfile · source: api.github.com
brew
Utility to examine and validate certificates in a variety of formats. Version 1.18.0 via Homebrew; verified 2026-04-10.
install
brew install certigolocal Homebrew formula metadata
sudo port install certigoMacPorts ports tree · sysutils/certigo/Portfile · source: api.github.com
sudo apk add certigoAlpine Linux edge package indexes · certigo · source: dl-cdn.alpinelinux.org
nix profile install nixpkgs#certigonixpkgs package indexes · pkgs/by-name/ce/certigo/package.nix · source: api.github.com
scoop install main/certigoScoop official bucket manifest trees · bucket/certigo.json · source: api.github.com
overview
Utility to examine and validate certificates in a variety of formats
history
certigo is Square's certificate inspection and validation CLI. Its README positions it as a debugging tool for SSL/TLS issues, with support for common certificate and keystore formats, remote TLS connections, StartTLS protocols, validation, linting, and JSON output.
The public repository was created in 2016 under square/certigo and has continued to receive upstream releases, including v1.18.0 in 2026. The project is written in Go and documents Go module-based development.
certigo moved beyond a GitHub-only utility into regular package-manager channels. The supplied package facts list APK, Homebrew, MacPorts, Nix, and Scoop, and the README itself documents Homebrew installation for macOS.
certigo is commonly used to dump certificate files and keystores, connect to servers to inspect and verify TLS chains, and verify certificate chains against expected names. Its JSON output makes it scriptable with tools such as jq.
Package nerds care about certigo because it packages a practical slice of TLS troubleshooting into one portable CLI. It handles formats and protocols that otherwise push users toward several different OpenSSL, keytool, and ad hoc shell invocations.
security posture
narrow executable package without higher-risk signals.
green risk · low confidence · appliance
Before unattended agent use, check whether the tool reads plaintext credentials, writes remote state, publishes artifacts, or shells out to plugins.
executables
| Command | Kind | Exposure | Note |
|---|---|---|---|
certigo | cli | global executable |
freshness
These signals separate page generation age, package-manager activity, and upstream release comparison. Version lag is warned only when an evidence URL and comparable versions are present.
https://github.com/square/certigo
install metadata
| Package key | brew:certigo |
|---|---|
| Version | 1.18.0 |
| Package manager | Homebrew |
| Package manager page | https://formulae.brew.sh/formula/certigo |
| Homepage | https://github.com/square/certigo |
| Repository | https://github.com/square/certigo |
| Upstream docs | https://github.com/square/certigo#readme |
| License | Apache-2.0 |
| Source archive | https://github.com/square/certigo/archive/refs/tags/v1.18.0.tar.gz |
| Last updated | 2026-04-10T21:11:33Z |
| Pulse | updated |
| Build dependencies | go |
| Bottle | available (on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux) |
| Homebrew post-install | not defined |
| Service | none declared |
registry facts
| Source Database | Homebrew formula API |
|---|---|
| Tap | homebrew/core |
| Full Name | certigo |
| Version Scheme | 0 |
| Revision | 0 |
| Head Version | HEAD |
| Bottle Stable Root URL | https://ghcr.io/v2/homebrew/core |
| Deprecated | no |
| Disabled | no |
| Keg Only | no |
| URL Keys |
|
source database matches
Matches are pulled from external package-manager indexes and kept separate from local Automic Vault package links.
certigo
nix profile install nixpkgs#certigocertigo 1.16.0-r33
Utility to examine and validate certificates in a variety of formats
https://github.com/square/certigo
sudo apk add certigocertigo
sudo port install certigomain/certigo
scoop install main/certigosource trail
This page is generated by av-web from the private package SQLite artifact built by scripts/generate-pkg-sqlite.py.
View the package source record on GitHub.