Are you referring specifically to certain TLDs? While browsers do recognize self-signed certificates, they display warnings. In Chromium-based browsers, even if there’s no explicit bypass option, you can type thisisunsafe to override the warning.
However, modern browsers in relation to .dev and certain other TLDs require an SSL certificate issued by a CA, as those domains are preloaded on the HSTS list.
Moreover, you can always place Webmin behind Cloudflare DNS proxy, on port 8443 and forget about all this hassle with SSL certificates.