Support for Certificates payload. Since we use some internal root CAs, we would like to be able to push those root certs to the device so that our SSL sessions are validated when mobile devices content to https signed with certs issued from that root. This will allow us to continue to use the "disallow untrusted TLS connections".