openssl-crl(1): The -verify option is implied by -CA* options

Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> Reviewed-by: Todd Short <todd.short@me.com> (Merged from https://github.com/openssl/openssl/pull/24024) (cherry picked from commit a16f2e7651b22ee992bb0c279e25164b519c1e80)
author: Tomas Mraz <tomas@openssl.org> 2024-04-02 18:47:26 +0200
committer: Tomas Mraz <tomas@openssl.org> 2024-04-04 17:45:44 +0200
commit: 2f78e01eb5d670b87508509ba9bebc67672d4aba (patch)
tree: 9af5cde8aa91c6ba73d9f99c7e881453086e5161
parent: b9fe6deae4ba9ab3f9c27a0df58815eabc8c7ca9 (diff)
1 files changed, 3 insertions, 0 deletions
diff --git a/doc/man1/openssl-crl.pod.in b/doc/man1/openssl-crl.pod.in
index 5cd5852bb6..4327b6157b 100644
--- a/doc/man1/openssl-crl.pod.in
+++ b/doc/man1/openssl-crl.pod.in
@@ -97,6 +97,9 @@ Verify the signature in the CRL. If the verification fails,
 the program will immediately exit, i.e. further option processing
 (e.g. B<-gendelta>) is skipped.
 
+This option is implicitly enabled if any of B<-CApath>, B<-CAfile>
+or B<-CAstore> is specified.
+
 =item B<-noout>
 
 Don't output the encoded version of the CRL.
author	Tomas Mraz <tomas@openssl.org>	2024-04-02 18:47:26 +0200
committer	Tomas Mraz <tomas@openssl.org>	2024-04-04 17:45:44 +0200
commit	2f78e01eb5d670b87508509ba9bebc67672d4aba (patch)
tree	9af5cde8aa91c6ba73d9f99c7e881453086e5161
parent	b9fe6deae4ba9ab3f9c27a0df58815eabc8c7ca9 (diff)