When the user manually trusts a certificate, we should be storing
the whole cert instead of just an encoding of its fingerprint.
This allows us to display it properly, chain other certs trusted
by it, and generally do everything more sanely.
Baby step for issue #806