Default plugin, saves certificates to the Windows Certificate store. Which store is used is based on the following priorities:
WebHostingstore (if it exists, i.e. Windows 2012+ with IIS)
Mystore (better known as Personal)
--keepexisting switch can be used to prevent the program from deleting older
versions of the certificate from the store.
--acl-fullcontrol parameter can be used to grant principals other than the
defaults for a specific store full control access to the private key.
[--store certificatestore] [--certificatestore My] [--keepexisting] [--acl-fullcontrol "network service,administrators"]