HTTPS requests for Ars Technica URLs redirect to HTTP (insecure) URLs

gistfile1.txt

$ curl --verbose https://arstechnica.com/ars-staff-pgp-keys/
* About to connect() to arstechnica.com port 443 (#0)
*   Trying 50.31.151.33... connected
* successfully set certificate verify locations:
*   CAfile: none
  CApath: /etc/ssl/certs
* SSLv3, TLS handshake, Client hello (1):
* SSLv3, TLS handshake, Server hello (2):
* SSLv3, TLS handshake, CERT (11):
* SSLv3, TLS handshake, Server key exchange (12):
* SSLv3, TLS handshake, Server finished (14):
* SSLv3, TLS handshake, Client key exchange (16):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSLv3, TLS change cipher, Client hello (1):
* SSLv3, TLS handshake, Finished (20):
* SSL connection using ECDHE-RSA-RC4-SHA
* Server certificate:
* 	 subject: serialNumber=LYfGAkF57gXYgZ8iDzghkp0ZodhE/wOJ; OU=GT72776986; OU=See www.rapidssl.com/resources/cps (c)14; OU=Domain Control Validated - RapidSSL(R); CN=*.arstechnica.com
* 	 start date: 2014-04-08 02:49:09 GMT
* 	 expire date: 2016-04-10 20:57:43 GMT
* 	 subjectAltName: arstechnica.com matched
* 	 issuer: C=US; O=GeoTrust, Inc.; CN=RapidSSL CA
* 	 SSL certificate verify ok.
> GET /ars-staff-pgp-keys/ HTTP/1.1
> User-Agent: curl/7.22.0 (x86_64-pc-linux-gnu) libcurl/7.22.0 OpenSSL/1.0.1 zlib/1.2.3.4 libidn/1.23 librtmp/2.3
> Host: arstechnica.com
> Accept: */*
> 
< HTTP/1.1 302
< Server: nginx
< Date: Thu, 19 Jun 2014 20:06:53 GMT
< Content-Type: text/html
< Transfer-Encoding: chunked
< Connection: keep-alive
< Location: http://arstechnica.com/ars-staff-pgp-keys/
< X-Ars-Server: web04
< 
* Connection #0 to host arstechnica.com left intact
* Closing connection #0
* SSLv3, TLS alert, Client hello (1):