Signing with hsm: ${hsm.keystore} Signing without timestamp: No tsaurl was provided so the file was not timestamped. Users will not be able to validate this file after the signer certificate's expiration date or after any future revocation date.