Could you add your SHA256 fingerprints somewhere?

[Mikaela]

ZNC wants them for invalid certificates starting from 1.6 (in development/git as 1.5) and WeeChat will get support for them in 1.2 (it currently wants SHA1 fingerprints). My ZNC is currently trusting the following certificates:

2014-12-21 18:21:37+0200 < *status> 1. 62:39:4b:ab:c7:00:1c:d6:c7:18:68:22:4b:23:14:53:8d:fc:48:5b:ce:ab:f0:2a:d0:e6:01:ee:43:f8:cb:40
2014-12-21 18:21:37+0200 < *status> 2. 82:9e:03:05:60:4a:e4:9e:41:36:f7:2b:59:a9:93:92:4e:fe:02:2c:41:f2:56:8e:0d:28:22:cb:01:84:ac:ff
2014-12-21 18:21:37+0200 < *status> 3. b1:d9:a1:f4:3e:a7:54:f6:1c:bf:2f:58:c8:1e:bf:f8:f5:9d:8d:49:3b:ca:0a:45:48:dd:a7:18:5c:80:3a:51
2014-12-21 18:21:37+0200 < *status> 4. ba:48:95:2a:55:24:62:47:39:cd:8c:b1:d5:61:29:7b:5d:93:a6:57:b9:75:32:22:10:42:fd:80:e0:af:15:91

See also znc/znc#156 & weechat/weechat#281.

[Mikaela]

The fingerprint can be checked using openssl s_client -connect 127.0.0.1:6697 < /dev/null 2> /dev/null | openssl x509 -fingerprint -sha256 -noout -in /dev/stdin.