Found by Christopher Cho, of which he included a thorough repro data and code here:
Per the auth spec, the username we're deriving from the client certificate should conform to:
On the client certificate provided in that gist, that command results in:
But the C driver on macOS derives the username as:
Which results in an authentication failure. As a workaround, the username can be provided explicitly.