It is common that repofiles are needed on temporary installed virtual machines, and it is not uncommon that the Red Hat authority is not set to be trusted in such environment (copr's ssl certificates are signed by Red Hat root authority). Still, it would be nice if generated repo files worked everywhere -- which means not requiring ssl since for internal service it is unlikely to get ssl certificate signed by trusted external authority.
Another option to consider is to add sslverify=0 to the .repo files and leave the https in the URL.
Upstream proposal: https://pagure.io/copr/copr/pull-request/410
Downstream patched for now. And later we'll update to PR 410 (whatever there will be).
Created attachment 1485267 [details] cloud-init YAML sample that installs RH CA Kind of a bummer that installing the Red Hat CA in temporary virtual machines was such a hassle. Here's the cloud-init settings that I use to install the CA on RHEL 6 and RHEL 7 nodes.