21.10 sudo apt update failing

Question

After doing sudo apt update receiving following:

Certificate verification failed: The certificate is NOT trusted. The name in the certificate does not match the expected.  Could not handshake: Error in the certificate verification. [IP: 2a01:4280:2:211a::70 443]
Err:2 https://il.archive.ubuntu.com/ubuntu impish-updates InRelease...I added the tag HPLIP because this all started after purchasing an HP allin one printer, and it has proven impossible install, run, and connect to my laptop. To my phone, yes, and I should have been satisfied with just that.   so, at this point, after powering down and rebooting, doing sudo apt update, this is where I am at...   Hit:1 http://dl.google.com/linux/chrome/deb stable InRelease
Ign:2 http://ppa.launchpad.net/rock-core/qt4/ubuntu impish InRelease
Hit:3 http://archive.canonical.com/ubuntu impish InRelease          
Get:4 http://security.ubuntu.com/ubuntu impish-security InRelease [99.5 kB]    
Err:6 http://ppa.launchpad.net/rock-core/qt4/ubuntu impish Release             
  404  Not Found [IP: 2001:67c:1560:8008::19 80]
Ign:5 https://il.archive.ubuntu.com/ubuntu impish InRelease                    
Ign:5 https://il.archive.ubuntu.com/ubuntu impish InRelease                    
0% [Working]                                                                   

...and now nothing is happening

I have turned off the computer, and I turned it back on. I went to 'software updater' and received the following message: Failed to download repsoitory information. and... Failed to download package files.

Answer 1

The error message occurs because that mirror does not currently provide a secure (https) connection.

Solution: Edit your sources to use http instead, or select a different mirror.

• Note that the rest of the sources in your output are NOT https.

Explanation: The use of https is optional. The system is designed to be secure without https. Ubuntu does not control mirrors (they are volunteers), and Ubuntu cannot provide SSL certificates to servers that it does not control. So most mirrors do NOT offer https. Instead, each package is signed, and apt tests each signature automatically.