This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(51.2, 42%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EE%3C/text%3E%3C/svg%3E)
There is a difference in behavior with the open-source curl.exe, and the curl.exe natively included in Windows.
When making a request with Windows native curl.exe, if a trusted root certificate authority such as one listed here is not found in the local store, the request will still succeed and the certificate will be downloaded and added to the local store (accessed with certlm.msc)
When making the same request with the open-source curl.exe, and it is using the native store (--ca-native), the request will FAIL if the root certificate authority is not already in there.
How do I replicate this Windows native curl.exe behavior?
@eric_s Hello!
Replicate this Windows native curl.exe behavior, what that means? Program it by its source code? I'm afraid you can't. You can just run and test it in like powershell.
You can download the different versions of curl.exe for windows: https://curl.se/windows/
Sorry but I don't think you understand my question.
Somehow, someway the native curl.exe is updating the local store from the server, and the curl.exe that you linked to does not. I want to know whatever API call is necessary to do that.
@eric_s What's your version of windows server? And what are the versions of windows and you installed?
@eric_s And I can tell you, you might be disappointed. No such APIs can decide curl update or not. They're packaged in sysWow64 and system32.
@eric_s Have you tested different version and get some ideas?