Update embedded CA certificates

It seems the embedded CA certificate bundle installed by Omnibus was last updated in 2022: https://gitlab.com/gitlab-org/omnibus-gitlab/-/blob/50e54f3baf0089afbe3aab88c5dc808bbc7e7114/config/software/cacerts.rb#L28. It should be updated again.

This causes outgoing TLS connections to fail if the remote service uses a certificate signed by a CA that was not in the 2022 bundle.

Connection failures can be worked around by setting the SSL_CERT_FILE variable, as described in https://docs.gitlab.com/omnibus/settings/ssl/#details-on-how-gitlab-and-ssl-work or adding missing CA certificates to etc/gitlab/trusted-certs.