I have been trying to understand the working of SSL. I know that any https website has a digital certificate with it. So when the client requests something from the server, the server sends with certificate which is signed by some CAs. Since the client trusts the CAs, it will also trust the server.
My question is how is this trust is performed? Given that anyone can create public/private key pair and get it signed. Please clarify.