Beginning with Signtool version 10.0.20348.0, you'll find that you'll receive the following error when you don't include the /fd option when using /di :
SignTool Error: No file digest algorithm specified. Please specify the digest algorithm with the /fd flag. Using /fd SHA256 is recommended and more secure than SHA1. Calling signtool with /fd sha1 is equivalent to the previous behavior. In order to select the hash algorithm used in the signing certificate's signature, use the /fd certHash option.
To avoid this error, there is a new flag /fdws that suppresses the error and allows you to continue.
The updated command in this case would be:
"c:\Program Files (x86)\Windows Kits\10\bin\10.0.22000.0\x64\signtool.exe" sign /fdws /di a b