It would be helpful to allow additional CA certificates to be used for SSL peer validation. Currently the only options are validation against known root CAs or skipping verification using the -k option.