Use ca-global to verify the Launchpad cert instead of the CA it used to use

Using ca-global is less secure but future proof because we won't notice
when the CA that Launchpad uses changes as we don't read error logs.

Reported-by: Steve McIntyre <93sam@debian.org>
See-also: https://wiki.debian.org/ServicesSSL