[ssl_mgmt] Use SHA1 as default hash instead of MD5

ssl_mgmt/openssl.cnf.in

@@ -15,7 +15,7 @@ new_certs_dir = $dir/newcerts
 certificate = $dir/certs/ca-cert.pem
 private_key = $dir/private/ca-key.pem
 default_days = @LENGTH@ # Certificates are signed for default_days days
-default_md = md5
+default_md = sha1
 preserve = no
 email_in_dn = no
 nameopt = default_ca
@@ -37,7 +37,7 @@ default_bits = 2048
 # Name of the generated key (specify it as a CLI argument if different):
 default_keyfile = newkeys/key.pem
 # Hash algorithm:
-default_md = md5
+default_md = sha1
 # Authorised characters:
 string_mask = nombstr
 prompt = no