The reason that importing the CA cert that was created via the tutorial for setting up a HTTPS munki server failed was the certificates, not the import method.
Once I corrected the certificates, the following workflow worked:
# Create the keychain at ~/Library/Keychains/ (or specify a full path instead of a relative filename)
security create-keychain -p munki munki.keychain
# Unlock it