Seems a lot of bug did go through unnoticed on the certificate-manger tool. To avoid issues, I would suggest to: - Add some tests at least for basic cases (like init) - Enforce that thoses tests pass in CI