These kind of master keys already exists so it is not something hypothetical. I am talking about the private keys of trusted root certification authorities. If it would be as easy to get them as you say nobody would probably use TLS since it would be useless.
You're vulnerable to MitM if adversaries have issued fraudulent certificates for sites that you use. And we know that this has happened, more than once.