They use a self-signed certificate for DTLS-SRTP, and the fingerprint of that is sent over the signalling channel.