If you do that please be sure to make it clear in the package description what the Debian version of the package returns (the proposed description in the ITP suggests that the package will return the list of certs from python-certifi upstream).After a discussion in #debian-python, it appeared to make sense to package this and patch it so its where() function returns the location where Debian is already providing CA certificates. This will be easier than having to patch every python package that depends on certifi.