Hi, I think the Built-in Object Token is the root certificate store that has a list of root certificates of CAs vetted by Mozilla. Depending on your browsing habits, your region, at least some or many of these would be needed to identify secure sites for you. For eg. when you connect to a banking site or email site you need a way to know that it is the correct site. This is done for you by the CAs. Through some research and trial and error you can delete the unneeded ones. If anything goes wrong, delete the '''cert8.db''' file in [http://kb.mozillazine.org/Profile_folder_-_Firefox your Firefox Profile Folder] and Firefox will load the default settings again and recreate the file. The thing is, one can either do it oneself to verify secure sites, secure content etc. or entrust an entity (CA - Certificate Authority) to do it for us. In the default case the CA's root certificates do it for us. We can add/delete root CAs, but please bear in mind that root CAs have superpowers. An alternative is [http://convergence.io/ Convergence.] [https://wiki.mozilla.org/CA:Glossary CA Glossary.] [https://developer.mozilla.org/en/Introduction_to_Public-Key_Cryptography Public Key Cryptography]

You can click the Edit button in the certificate manager and remove all trust bits if you do not want to use a build-in root certificate. *Firefox > Preferences > Advanced : Encryption: Certificates - View Certificates