This is an Apple limitation (as 99% of all MDM problems are). Also, it would be a security problem for some organizations, especially healthcare which I do, to have their MDM traffic over the same certificate.
Meraki is is great at alerting you when that certificate is about to expire and has great guides to renew it.
Hope thay answers the “why” aspect,
Find this helpful? Click the kudos button. Thanks!