Bundle SPI and jabber.ccc.de root certificates
We should ship the SPI root certificate (spi-inc.org) for OFTC, and the jabber.ccc.de certificate with Tor Messenger since both of these services are widely used.
This was discussed on tbb-dev. We should do this by updating the certificate store as part of the build process. This should be done transparently and we should make it clear that we are shipping these two root certificates.