Is your feature request related to a problem? Please describe.
Currently, HSM configuration is used when generating CSRs, but not when generating self-signed certificates, i.e. tedge cert download will use HSM, but tedge cert create will not.

Describe the solution you'd like
tedge cert create should use HSM configuration to sign the self-signed certificate.

Describe alternatives you've considered

Additional context