[attestation-service] Support Injecting Multiple Cert Paths

Currently we only support hot-patching the JWT library with one certificate from an attestation service. This is not a limitation of the hot-patching mechanism in `./accless/libs/jwt/build.rs`, but rather on how we input variables via CMake. It should not be difficult to extend it to support a list of PEM files.