Ability to update CA certificates during commissioning and deployment

We are requesting the ability to add custom CA certificates to be used by the ephemeral commissioning and deploying operating systems. We are operating in an air-gap environment. In our environment we are not able to configure a local mirror to use http, we are required to use https. During the commissioning process we are encountering errors with certificate verification.