Trust File
The content of the trust file instructs clients to trust the FTL servers' certificate. Administrators and developers coordinate to supply the trust file to FTL servers, application programs, and web browsers.
A secure FTL server reads the trust file in its data directory. The trust file is named ftl-trust.pem. This file contains one or more PEM-encoded public certificates, each of which is typically 1 - 2 kilobytes of data.
Administrators distribute the trust file to clients: that is, developers and application administrators coordinate so that client programs can access the trust file at run time.
Users can load the trust file into a web browser’s trust store.
Affiliated FTL Servers and the Trust File
Affiliated FTL servers all use the same trust file. As a consequence, you do not need to distribute separate trust files to clients of a family of affiliated servers: one trust file suffices for the whole family.
(Even if you create a different private key for a cluster of satellites or disaster recovery servers, a primary server signs that key, so the primary's trust file is still valid for satellites and their clients.)