• Reenable certificate validation through libressl (libressl 2.2.6 seems to be happy enough with the ca_root_nss 3.22.2 upgrade)
• Avoid strptime %Z which is nonstandard and can give surprising results on different operating systems. (Same fix as upstream.)

PR: 207685
Submitted by: mandree