What's the correct procedure to remove expired certificates in Mac OS X Keychain

If I open the Keychain Access app from the Utilities directory, I can filter the list of certified that the OS is using.

Filtering to show all certificates, then sorting by date and I can see that a significant portion of the certificates have expired.

Is it enough to wait for an OS update or update for this or do we have to manually intervene?

What's the correct procedure? If they expired, they will throw an error for the certificate if I receive one. This hasn't happened so far, making me think these are more esoteric certifications and I don't need to worry too much.

However, this is about security, and I'd rather they weren't there and get the error than getting another error when I have to read the certificate to understand why it isn't working.

What is the suggested methodology for dealing with expired certificates in Key Manager on Mac OS x?