Attempting to insert 3 new certificates.

Cert #1 is self signed ( Root cert) 
Cert #2 is signed by Cert #1 (... Intermediate #1)
Cert #3 is signed by Cert #2  (when inserting this cert,  get MSG - ACF6D075 The signing certificate is not a Certificate Authority certificate. 

The certificate is inserted without TRUST.

Release: 16.0
Component: ACF2 for Z/OS

Cert #3 was not signed by a CA (Certificate Authority)  
A true CA, like Verisign or GoDaddy, etc, do an investigation into the requests to prove who they say they are, they really are.  
A self-signed does not go through that process, so it is not trusted and ACF2 can see that on the insert.

So it is up to you to decide if this certificate can be trusted.
Since you know what you did and have not passed off the information where it could be corrupted or stolen,
you know it is trusted so you add the TRUST parm. 

CHANGE cert.auth TRUST