$ git clone -n https://src.fedoraproject.org/rpms/ca-certificates.git /var/lib/mock/f40-build-1542507-23937/root/chroot_tmpdir/scmroot/ca-certificates Cloning into '/var/lib/mock/f40-build-1542507-23937/root/chroot_tmpdir/scmroot/ca-certificates'... $ git fetch origin 45c967b99037442a35d9ffa628ef4c2eba633ce0:KOJI_FETCH_HEAD From https://src.fedoraproject.org/rpms/ca-certificates * [new ref] 45c967b99037442a35d9ffa628ef4c2eba633ce0 -> KOJI_FETCH_HEAD $ git reset --hard KOJI_FETCH_HEAD HEAD is now at 45c967b Update to CKBI 2.68_v8.0.302 from NSS 3.101 Removing: # Certificate "Verisign Class 1 Public Primary Certification Authority - G3" # Certificate "Verisign Class 2 Public Primary Certification Authority - G3" # Certificate "Security Communication Root CA" # Certificate "Autoridad de Certificacion Firmaprofesional CIF A62634068" # Certificate "Symantec Class 1 Public Primary Certification Authority - G6" # Certificate "Symantec Class 2 Public Primary Certification Authority - G6" # Certificate "TrustCor RootCert CA-1" # Certificate "TrustCor RootCert CA-2" # Certificate "TrustCor ECA-1" Adding: # Certificate "TrustAsia Global Root CA G3" # Certificate "TrustAsia Global Root CA G4" # Certificate "CommScope Public Trust ECC Root-01" # Certificate "CommScope Public Trust ECC Root-02" # Certificate "CommScope Public Trust RSA Root-01" # Certificate "CommScope Public Trust RSA Root-02" # Certificate "D-Trust SBR Root CA 1 2022" # Certificate "D-Trust SBR Root CA 2 2022" # Certificate "Telekom Security SMIME ECC Root 2021" # Certificate "Telekom Security TLS ECC Root 2020" # Certificate "Telekom Security SMIME RSA Root 2023" # Certificate "Telekom Security TLS RSA Root 2023" # Certificate "FIRMAPROFESIONAL CA ROOT-A WEB" # Certificate "SECOM Trust.net" # Certificate "VeriSign Class 2 Public Primary Certification Authority - G3" # Certificate "SSL.com Code Signing RSA Root CA 2022" # Certificate "SSL.com Code Signing ECC Root CA 2022"