curl: Use default trust store of TLS backend

Having curl fall back to openssl's CA means that we need not patch curl
to respect NIX_SSL_CERT_FILE. It will work in all the cases.

This reverts commit fb4c43dd "curl: Use CA bundle in nix default profile by default"
If we want to reintroduce that feature, this needs to go inside openssl