Description of problem:
Syncing from upstream repo using certificates for authentication on Red Hat Satellite 6 fails with certificate verify failed: unable to get local issuer certificate (_ssl.c:1129)')]).

Version-Release number of selected component (if applicable):

How reproducible:
Always

Steps to Reproduce:
1. Create a upstream registry which uses a ca , key and cert for authentication.

Sync the repo and it fails with:

Cannot connect to host registry.tts-trax.com:443 ssl:True [SSLCertVerificationError: (1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1129)')])

Expected results:
The sync should be successful.

Additional info:
It is seen that somehow pulp is ignoring the certs used in the repo configuration.

As a workaround we need to keep the ca in /etc/pki/ca-trust/source/anchors of satellite and then run #update-ca-trust