Reply to comment:

Robert Kisteleki
Yes, that was a regression that we fixed now. About the SHA-1: we'll likely upgrade when our certificate changes (and/or when the CA supports SHA-2 :-)