Also add an -all_time command line option to retrieve all certificates, not just the ones since the last scan.