All it takes to analyze SSL certificates on macOS is, as so often, a single shell command. macOS comes with everything you need pre-installed.

This is yet another “notepad scribble post” i.e. a public note for myself so I don’t have to search the Internet next time I want to analyze SSL certificates on macOS.

Dump certificate

echo | openssl s_client -connect secure.host.example:443

Extract the fingerprint

echo | openssl s_client -connect secure.host.example:443 | openssl x509 -fingerprint -noout