Some metadata publishers offer SHA256 fingerprints to validate the
fingerprint of the certificate used to sign metadata. Allow users to
configure the fingerprinting algorithm to facilitate validation.

For backward compatibility, the default algorithm remains SHA1.