New SSL certificates for the Replicant websites
- Use a new private key, since the previous one was generated and used before Heartbleed was fixed
- Add replicant.us as an subjectAltName so that it doesn't show an annoying error when connecting to https://replicant.us instead of https://www.replicant.us
We are still sticking with CAcert. Please don't worry when the new certificate comes in and your browser complains.
I'll respond to this post when the new certificate is in place, with its fingerprint so that you can check whether the new certificate is not a MITM.