Look at the documentation of certutil.exe
certutil -addstore "Root" "c:cacert.cer"
and it worked well (meaning The certificate landed in Trusted Root of
If there are multiple certificates in a pfx file (key + corresponding
certificate and a CA certificate) then this command worked well for me:
certutil -importpfx c:somepfx.pfx