The configuration settings of the trust-store that contains root CA certificates for verifying CMP messages.

Mandatory: Yes.