Simplestream image repo, self-signed certificate

Hi all,
I am trying to setup a simplestream image repo.
So far all my tests has worked out well, creating images with distrobuilder, populating with incus-simplestreams.
I have tried with a letsencrypt cert and everything works fine.
The problem though is that our company do not want to have this repo public so I generated a self-signed cert and I always get an error when trying to list or install from repo.
Add repo with:

incus remote add --protocol simplestreams --accept-certificate MyName https://1.2.3.4

The flag --accept-certificate does not seem to make any difference, get the same error whether using it or not.
Trying to list images with:

incus image list MyName:

Gives the following error:

Error: Failed parsing stream: Get "https://1.2.3.4/streams/v1/index.json": tls: failed to verify certificate: x509: certificate signed by unknown authorit

Is it possible to use a self-signed certificate for a simplestreams repo?
If possible what am I missing?

Many thanks!!

But you can use a free valid cert without going public…

Simplestreams in Incus requires a valid certificate.

Though as mentioned, it’s pretty easy to get a Let’s Encrypt certificate even for a private server, so long as the domain itself is public (DNS challenge).

If that’s not an option, then you can use a local PKI and trust that PKI on your servers, making the certificates you generate be valid.