diff --git a/.gitea/workflows/test-local-signing.yml b/.gitea/workflows/test-local-signing.yml
index 091bee06..cc74e870 100644
--- a/.gitea/workflows/test-local-signing.yml
+++ b/.gitea/workflows/test-local-signing.yml
@@ -48,15 +48,23 @@ jobs:
           security default-keychain -s "$KEYCHAIN_PATH"
           security unlock-keychain -p "$KEYCHAIN_PASSWORD" "$KEYCHAIN_PATH"
           
+          # Download and import Apple root certificates
+          echo "📥 Downloading Apple root certificates..."
+          curl -O https://www.apple.com/certificateauthority/AppleWWDRCAG3.cer
+          curl -O https://www.apple.com/certificateauthority/DeveloperIDG2.cer
+          
+          echo "🔐 Importing Apple root certificates..."
+          security import AppleWWDRCAG3.cer -k "$KEYCHAIN_PATH" -T /usr/bin/codesign
+          security import DeveloperIDG2.cer -k "$KEYCHAIN_PATH" -T /usr/bin/codesign
+          
           # Import certificate with all access rights
-          echo "📥 Importing certificate..."
+          echo "📥 Importing developer certificate..."
           security import certificate.p12 \
             -k "$KEYCHAIN_PATH" \
             -P "$CERTIFICATE_PASSWORD" \
             -T "/usr/bin/codesign" \
             -T "/usr/bin/security" \
-            -T "/usr/bin/xcrun" \
-            -A
+            -T "/usr/bin/xcrun"
           
           # Update keychain partition list
           security set-key-partition-list \