AM62P: Can I signed on a build image?

Hello,

The following script is used for signing the application images:

https://github.com/TexasInstruments/mcupsdk-core-k3/blob/k3_next/tools/boot/signing/appimage_x509_cert_gen.py#L1-L1

This can be used as a standalone script outside of the build procedure to sign the generate application binaries.

Regards,

Prashant

# arguments definition
my_parser = argparse.ArgumentParser(description="Generates a x509 certificate for an application binary to boot it in HS device")

my_parser.add_argument('--bin',        type=str, help='Bin file that needs to be signed')
my_parser.add_argument('--key',        type=str, help='File with signing key inside it')
my_parser.add_argument('--enckey',     type=str, help='File with encryption key inside it')
my_parser.add_argument('--cert',       type=str, help='Certificate file name (optional, will use a default name otherwise)')
my_parser.add_argument('--output',     type=str, help='Output file name (concatenated cert+bin)')
my_parser.add_argument('--core',       type=str, help='Core on which the binary is meant to be loaded. Optional')
my_parser.add_argument('--enc',        type=str, help='If the binary need to be encrypted or not [y/n]')
my_parser.add_argument('--loadaddr',   type=str, help='Target load address of the binary in hex. Default to 0x70000000')
my_parser.add_argument('--authtype',   type=str, help='Authentication type. [0/1/2]. 0 - Move to destination address specified after authentication, 1 - In place authentication, 2 - Move to the certificate start after authentication. Default is 1')
my_parser.add_argument('--keyversion', type=str, help='App signing key version. [1.5/2.2]. 1.5 - RSASSA PKCS v1.5 schem

Can you give me an example on how to fill  these argus?