When viewing or importing an s/mime cert generated from (up to) version (commit b3d90e8) even after importing both the root CA and signing CA certs, trust is not established correctly, and Outlook provides the "useful" error message of "The certificate used to create this signature does not have the correct usage properties for digitally signing e-mail messages" for the chain, and "This certificate is not valid for the selected purpose" for the signing certificate.

Thunderbird works flawlessly.