The most secure way to resolve this is to provide cURL with an updated list of trusted authorities.
Get the official cacert.pem from the cURL website.
cURL is designed to be secure by default. When it connects to an HTTPS URL, it checks the server's certificate against a local store of trusted root certificates. The "Error 60" specifically indicates:
Restart Apache, Nginx, or your local development tool (XAMPP/WAMP) for changes to take effect. 2. The Command Line Quick-Fix
The server's certificate is signed by itself rather than a trusted third party.
The error message occurs when cURL attempts to establish a secure HTTPS connection but cannot verify the server's identity. This typically happens because the server is using a self-signed certificate—which is not issued by a recognized Certificate Authority (CA)—or your local system lacks an up-to-date CA certificate bundle to verify it. Why This Error Happens
curl.cainfo = "C:\path\to\your\cacert.pem" openssl.cafile = "C:\path\to\your\cacert.pem" Use code with caution.
Your local environment (like XAMPP, WAMP, or MAMP) is using an old cacert.pem file that doesn't recognize the server's issuer.