Did you check, whether its really the root of CACert? *scnr*
Did I say I was leaving them there, I just said it fixed it, thus identifying the problem :-)
This is something I'm wondering since a couple of years now. Comodo and friends are still in, but CACert has no chance.
Yeah, I've read various things on the processes of CAcert, but I don't know. Who are Verisign for that matter :-)
Cheers Lex