So after further testing and disabling dontaudit it really seems that rhsmcertd check something to find out if it can access /tmp or not. It tries to read /etc/selinux/config. I wasn’t able to find it in the source code.
Anyway: the AVCs are no problem. They only happen when it’s in permissive mode…