I recall having a nuclear meltdown personally when I heard about all of this in the mid aughts. Nobody cared. Nobody understands this today. Everyone just complains about the Donald, but I point to this, and they don't realize the connection.

How are they going to MITM communications with certs that never left my machine?

Are you suggesting they broke TLS or that they've somehow acquired every private cert generated?