EV Code Signing Certificate: Signing an Executable

1. Determine the certificate's thumbprint by viewing the certificate's details in the Windows Certificate Manager (required for the signtool command)
2. Insert the Yubikey NFC FIPS
3. Run the command line:

cd "C:\Program Files (x86)\Windows Kits\10\bin\{version}\x64"

4. Run the command line:

signtool sign /tr http://timestamp.sectigo.com /td sha256 /fd sha256 /sha1 {certificate-thumbprint} "c:\path\to\fileToSign.exe"

INFO

Replace {certificate-thumbprint} with the certificate's thumbprint found in step 1.