Problems with sites using Let's Encrypt certificates

Antonio Huete Jiménez tuxillo at quantumachine.net
Thu Sep 30 17:10:10 PDT 2021


Dear users,

As you may be already aware, a Let's Encrypt root CA certificate  
expired today. That is causing problems with our base LibreSSL but not  
with the DPorts one, we don't know why yet.
You might see an error similar to this one when doing any pkg operation:

Certificate verification failed for /O=Digital Signature Trust  
Co./CN=DST Root CA X3
Certificate verification failed for /O=Digital Signature Trust  
Co./CN=DST Root CA X3
Certificate verification failed for /O=Digital Signature Trust  
Co./CN=DST Root CA X3
Certificate verification failed for /O=Digital Signature Trust  
Co./CN=DST Root CA X3
Certificate verification failed for /O=Digital Signature Trust  
Co./CN=DST Root CA X3
34380633924:error:14007086:SSL routines:CONNECT_CR_CERT:certificate  
verify  
failed:/home/antonioh/s/dragonfly/lib/libressl/../../crypto/libressl/ssl/ssl_clnt.c:1138:
fetch:  
https://mirror-eu-1.dragonflybsd.org/dports/dragonfly:6.0:x86:64/LATEST/packagesite.txz: Authentication  
error

We are working on it already, will update this thread once it's fixed.

- The DragonFly BSD team



More information about the Users mailing list