Discussed on IRC, certs are taking too much time to be done as current ops are busy.
The whole cert system would need to be moved from the puppet repo to another repo. As well, puppet1 would need to be restricted to just editing certs.
I could take the role of "puppet-admin"/ "cert-admin" and therefore facilitate and expedite cert enabling.