- Add --trust-force option [feature karen]

  When certificate name does not match repository name then we fail even with
  --trust-yes. However, sometimes it can be desirable to override trust checks
  completely (need to think what else is there that we check). Probably makes
  sense to still issue a warning.