Certificate verification failed, again

This is basically the same issue as #93 (closed), but it happened again.

# LC_ALL=C apt update
Ign:1 https://updates.signald.org unstable InRelease
[…]
Ign:1 https://updates.signald.org unstable InRelease
Ign:1 https://updates.signald.org unstable InRelease
Err:1 https://updates.signald.org unstable InRelease
  Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown.  Could not handshake: Error in the certificate verification. [IP: 205.185.216.42 443]
[…]
W: Failed to fetch https://updates.signald.org/dists/unstable/InRelease  Certificate verification failed: The certificate is NOT trusted. The certificate issuer is unknown.  Could not handshake: Error in the certificate verification. [IP: 205.185.216.42 443]
W: Some index files failed to download. They have been ignored, or old ones used instead.

According to the ssllabs too, your cert seems to be in the wrong order: https://www.ssllabs.com/ssltest/analyze.html?d=updates.signald.org&s=205.185.216.42&latest

I don't understand that error though, since the order seems to be correct (site-to-CA).

Like in #93 (closed), using the non-encrypted http://updates.signald.org seems to be a good workaround.