I updated the root certificate set in maemo-security-certman (and hence microb) to the latest Mozilla root certificate set and now some sites have stopped working (e.g. https://www.microsoft.com and anything using entrust certificates (including https://www.entrust.com itself). These sites work just fine with the previous maemosec-certman-common-ca version but not the new set.

Is there anyone out there who knows anything about ssl, certificate authorities, nss etc who can help me figure out why sites that work fine with the old set of root certificates somehow dont work with the new set?