if I write a https program with libcurl, which CA cert should I download?

Question

I write a program to verify this website:

www.alipay.com

which root CA cert should I download from VeriSign, Inc.?

score 4 · Answer 1 · answered Apr 05 '12 at 07:05

4

The curl project itself provides the Mozilla bundle converted to PEM if you'd like that:

answered Apr 05 '12 at 07:05

Daniel Stenberg

score 0 · Accepted Answer · answered Apr 03 '12 at 03:08

0

You can use this one:

Or this one from mozilla:

answered Apr 03 '12 at 03:08

John Bachir

Beware not to use certificates that are explicitly distrusted in the Mozilla list. (Curl's `caextract` script seems to do this correctly.) – Bruno Apr 26 '12 at 20:39

2 Answers2