Tengo el archivo con los certificados X.509 y el siguiente preámbulo:

# This is a bundle of X.509 certificates of public Certificate
# Authorities.  It was generated from the Mozilla root CA list.
# These certificates are in the OpenSSL "TRUSTED CERTIFICATE"
# format and have trust bits set accordingly.
# An exception are auxiliary certificates, without positive or negative
# trust, but are used to assist in finding a preferred trust path.
# Those neutral certificates use the plain BEGIN CERTIFICATE format.

He intentado importarlo desde la línea de comandos pero falla:

$ sudo security add-trusted-cert -d -r trustRoot -k /Library/Keychains/System.keychain /Users/dzieciou/projects/mg/etc/pki/tls/certs/megabundle.crt

readFile: short read
***Error reading file /Users/dzieciou/projects/mg/etc/pki/tls/certs/
Error reading file /Users/dzieciou/projects/mg/etc/pki/tls/certs/megabundle.crt

Pude importar esos certificados a Firefox en MacOS, pero Firefox no utiliza el llavero del sistema.