In the latest cygwin package fetchmail 6.3.18-1 has been compiled with old openssl 0.9.8 library. This causes errors in ssl certificate validation when connecting to imap or pop3 with ssl. The problem is openssl 1.0.0 and later has different hash generation algorithm then previous 0.9.8 version. So after c_rehash symbolic links to valid certificates have different names then fetchmail is looking for.
First I have verified it with strace and have got symbolic link names of certificates that fetchmail is looking for. I created symbolic links with valid names (according to openssl 0.9.8 hashes) to existing certificates and fetchmail has worked well. Finally I have compiled fetchmail 6.3.21 from source with openssl 1.0.1a-1 library and have got everything working as required. So this is required to update fetchmail to 6.3.21 and compile it with latest openssl 1.0.1a-1 library in the main cygwin package.
