Verify by test, with the help of truss, DTrace, or equivalent, that an invocation of `fetch(1)` accesses CA cert paths and files as intended along each of the following degrees of freedom.
# "/usr/local/etc/ssl/cert.pem" and "/etc/ssl/cert.pem" exist or not
# `SSL_CA_CERT_FILE` is set or not (affects libfetch)
# `SSL_CA_CERT_PATH`is set or not (affects libfetch)
# `SSL_CERT_FILE` is set or not (affects libcrypto)
# `SSL_CERT_PATH` is set or not (affects libcrypto)