----- Original Message -----
If you experience such situations, the right approach is to contact
the
owner of the certificate (or the server), and ask them to get a
replacement certificate, or to install a replacement certificate on
their SSL/TLS server.
That’s the right thing to do of course, but leaves the users with an unusable system in
the mean time. Could the update description at least generally point to how to work
around this if the certificate owner is not (sufficiently quickly) responsive?
Mirek