> I set up a measurement to > check the SSL Certificate of torproject.org from as many countries as Presumably that the cert SHA1 fingerprint or binary diff is being checked, not just that a cert having the same CN is present and signed by some CA/issuer that may be subverted all the way back to the root certs in use.