Wikipedia's CAs are Let's Encrypt, DigiCert and GlobalSign. But my browser shows a certificate issued by... Google? (See the screenshot) What can this possibly mean?
I know there are some similar questions here but they are not equal.
8
- And when I check, it's a LetsEncrypt cert. I think the only issue here is your assertion that Wikipedia only uses certain CAs. And I'm not seeing a security question.schroeder– schroeder ♦2025-11-25 19:05:35 +00:00Commented Nov 25 at 19:05
- I get Let's Encrypt on Android, Linux & Windows. Are you behind some form of proxy or TLS inspection system?garethTheRed– garethTheRed2025-11-25 19:09:58 +00:00Commented Nov 25 at 19:09
- @garethTheRed No I'm not, it's a normal conectionuser378507– user3785072025-11-25 20:20:08 +00:00Commented Nov 25 at 20:20
- @schroeder Sorry to not mention LetsEncrypt, but yes, I'm aware LetsEncrypt is also one of their CAs. So, updating: DigiCert, GlobalSign, AND LetsEncrypt are the CAs used by Wikipedia, but definetely not Google!user378507– user3785072025-11-25 20:27:12 +00:00Commented Nov 25 at 20:27
- 1Sectigo's transparency-log search shows current certs for wikipedia from Let'sEncrypt and GoogleTrust, and recent (expired 2025-10-17) from DigiCert, but GlobalSign not since 2020.dave_thompson_085– dave_thompson_0852025-11-26 00:50:58 +00:00Commented Nov 26 at 0:50
| Show 3 more comments