e21730e
Stop assuming RSA 512 works For the sake of F24, stop assuming that we'll be able to generate 512-bit RSA keys. We use certutil to do some of it, and it doesn't give us a way to toggle support on.