[U-Boot] fit_check_sign - offline FIT verification with public certificate only

Hi,

Is there a particular reason why fit_check_sign can only verify an image using a DTB, rather than just the x509 public cert? Or is it just that nobody has added the option so far? It would be useful to verify images offline.

Thanks!