aerc should be able to check the tlsa record for the imap and smtp servers to validate if the ssl certificate of the servers are correct