NAME

       sq network dane fetch - Retrieve certificates using DANE

SYNOPSIS

       sq network dane fetch [OPTIONS] ADDRESS

DESCRIPTION

       Retrieve certificates using DANE.

       By default, any returned certificates are stored in the local certificate store.  This can
       be overridden by using `--output` option.

       When a certificate is retrieved using DANE, and imported into the local certificate store,
       any  User  IDs  with  the  email  address that was looked up are certificated with a local
       DANE-specific key.  That proxy certificate is in turn certified as a minimally trusted  CA
       (trust  amount:  1 of 120) by the local trust root.  How much the DANE proxy CA is trusted
       can be tuned using `sq pki link add` or `sq pki link retract` in the usual way.

OPTIONS

   Subcommand options
       -B, --binary
              Emit binary data

       --all  Fetch updates for all known certificates

       -o, --output=FILE
              Write to FILE (or stdout when omitted) instead of importing  into  the  certificate
              store

        ADDRESS
              Retrieve certificate(s) for ADDRESS

   Global options
       See sq(1) for a description of the global options.

SEE ALSO

       sq(1), sq-network(1), sq-network-dane(1).

       For the full documentation see <https://book.sequoia-pgp.org>.

VERSION

       0.34.0 (sequoia-openpgp 1.19.0)