(#2848) Rework the xmlrpc CA handler to use the modern SSL code
In order to remove the legacy SSLCertificates code, we first need to
rework the one place it's still being used, which is the CA handler.
Now, this handler essentially just defers to the Puppet::SSL classes.
Signed-off-by: Daniel Pittman <daniel@puppetlabs.com>