add trusted certificate centos 7

  398  update-ca-trust force-enable
  401  update-ca-trust extract
  403  openssl s_client -showcerts -connect github.com:443 </dev/null 2>/dev/null|openssl x509 -outform PEM >mycertfile.pem
  405  cp mycertfile.pem /etc/pki/ca-trust/source/anchors/
  406  update-ca-trust extract

Could you elaborate on what this is for?

I thought update-ca-trust was only used to manage CA certificates, not non-CA certificates like server certificates. When I try something similar (for server certificates), the update-ca-trust extract process ignores them.