Update DoD root certs

Summary

Update image to include WCF CA Certificate Bundle v5.12 and DoD PKI CA Certificates Bundle (PKCS#7) v5.9.

Steps to reproduce

@austindenton reported x509 errors in applications when verifiying certs signed by DoD root 3, SW 60, and WCF.

What is the current bug behavior?

Currently only the Certificates_PKCS7_v5.7_DoD bundle is installed: https://repo1.dso.mil/dsop/redhat/ubi/ubi8/-/blob/cf682da1f07506ec88eb147b33520e6b4eb34c56/Dockerfile#L10

What is the expected correct behavior?

Update image to include updated root certificates from: https://public.cyber.mil/pki-pke/

• New WCF CAs released - Certificate Bundle v5.12 The WCF PKI has recently deployed updated WCF Signing CAs 1-10. These new certificates are now available in the WCF PKI PKCS#7 Certificate Bundle v5.12.
• New DoD PKI CA Certificates in Updated DoD PKI CA Certificates Bundle (PKCS#7) v5.9 The latest DoD PKI CA Certificates Bundle (PKCS#7) v5.9 has been updated to include new CA certificates for DoD ID/EMAIL CAs 62-65, DoD SW CAs 66-69, and DoD Derility CA-1.

Currently this image does not include the WCF CA bundle. (I think, please verify.) If it is appropriate to add to this image, add it to our installed CAs.

Possible fixes

Add updated CA bundles to image.

Defintion of Done

• Bug has been identified and corrected within the container

/cc @ironbank-notifications/bug