Clamav-freshclam cannot download any file using Cloudflare Inc ECC CA-3 certificate due to a 'cookie-alert'

clamav_url=https://database.clamav.net

With curl, the error pops up with a different code and even less explanation:
curl --verbose clamav_url/daily-26108.cdiff

  • Trying 104.16.219.84:443…
  • Connected to clamav_url (104.16.219.84) port 443 (#0)
  • ALPN, offering h2
  • ALPN, offering http/1.1
  • successfully set certificate verify locations:
  • CAfile: /etc/ssl/certs/ca-certificates.crt
  • CApath: /etc/ssl/certs
  • TLSv1.3 (OUT), TLS handshake, Client hello (1):
  • TLSv1.3 (IN), TLS handshake, Server hello (2):
  • TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
  • TLSv1.3 (IN), TLS handshake, Certificate (11):
  • TLSv1.3 (IN), TLS handshake, CERT verify (15):
  • TLSv1.3 (IN), TLS handshake, Finished (20):
  • TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
  • TLSv1.3 (OUT), TLS handshake, Finished (20):
  • SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
  • ALPN, server accepted to use h2
  • Server certificate:
    CN=sni.cloudflaressl.com
  • start date: Aug 15 00:00:00 2020 GMT
  • expire date: Aug 15 12:00:00 2021 GMT
  • subjectAltName: host “clamav_url” matched cert’s “clamav_url”
  • issuer: C=US; O=Cloudflare, Inc.; CN=Cloudflare Inc ECC CA-3
  • SSL certificate verify ok.
  • Using HTTP2, server supports multi-use
  • Connection state changed (HTTP/2 confirmed)
  • Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0
  • Using Stream ID: 1 (easy handle 0x563792c483a0)

GET /daily-26108.cdiff HTTP/2
Host: clamav_url
user-agent: curl/7.74.0
accept: /

  • TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
  • TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
  • old SSL session ID is stale, removing
  • Connection state changed (MAX_CONCURRENT_STREAMS == 256)!
    < HTTP/2 403
    < date: Tue, 16 Mar 2021 19:13:23 GMT
    < content-type: text/plain; charset=UTF-8
    < content-length: 16
    < x-frame-options: SAMEORIGIN
    < cache-control: private, max-age=0, no-store, no-cache,
    must-revalidate, post-check=0, pre-check=0
    < expires: Thu, 01 Jan 1970 00:00:01 GMT
    < set-cookie: __cfduid=ddcb7b193b610184915d632a777cc506e1615922003;
    expires=Thu, 15-Apr-21 19:13:23 GMT; path=/; domain=.clamav.net;
    HttpOnly; SameSite=Lax
    < cf-request-id: 08de0e16a200000165631ec000000001
    < expect-ct: max-age=604800, report-uri=“cloudflare_report_url”
    < strict-transport-security: max-age=15552000
    < x-content-type-options: nosniff
    < server: cloudflare
    < cf-ray: 63104c6a9e3a0165-CDG
    <
  • Connection #0 to host clamav_url left intact
    error code: 1020

Is there any way to avoid/skip the challenge when using a CLI tool
since it is used to detect the client browser (“Checking your browser
before accessing clamav.net”)?