Forum Bugs

Certificate expiration

Docker file:

FROM debian:latest

RUN apt update && apt install wget -y
RUN wget


Step 3/3 : RUN wget
---> Running in 07df4392cb5a
--2020-06-01 17:44:44--
Resolving (
Connecting to (||:443... connected.
ERROR: The certificate of '' is not trusted.
ERROR: The certificate of '' has expired.

It work in ubuntu image.
An old root certificate has expired:

Please update your system to ensure that it has a recent copy of the relevant root certificates.
The issue seems to persist after running `update-ca-certificates`, we had to modify our production instances to pass `--insecure` for the time being.

Related information here:
We ran into this one too.

I think this is an issue with gnutls, which provides SSL support for wget (by default).

Issue has apparently been fixed but will take a while to find its way out to distributions

In the meantime, I found a couple of workarounds (that don't involve using the insecure option)
* remove the AddTrust_External_Root certificate from your store
* use curl -O instead

We have updated our SSL certificate since it was due to expire soon anyway, I hope that helps.