How can Macbook still connect to 802.1x after deleting certificates from keychain?

I recently installed an 802.1x EAP-TTLS profile on my Macbook (Sequoia 15.4.1) using a .mobileconfig file. The profile came along with two CA certificates. After installing the bundle, I can successfully connect to my work's Wifi network. I can also see the added certificates on Keychain Access. However, I didn't want to keep these certificates active for Safari, so I tried to delete them from the keychain while keeping the 802.1x settings. Surprisingly, the Wifi connection still works, without the certificates in the keychain: Does MacOS keep a copy of the certificates only for the 802.1x settings? Would they be still trusted in for example, Safari, even after removing them from the keychain?