This uses the default ssl verification in whatever version of python you have. Even though all API requests use public key signing (so nothing really private is ever sent), if you're worried about someone MITM the API requests to letsencrypt.org, please use python 2.7.9+.