Metadata refresh validate fingerprint

If a valid URL is provided in the "Metadata URL for auto-refresh" field then you can specify the fingerprint of the certificate used to sign the metadata. You don't need this option if you don't want to validate the signature on the metadata.