How to configure rippled with a TLS certificate from:
A well-known CA, using Let's Encrypt as an example, with instructions for how to create and automatically renew a certificate
A self-signed certificate, with instructions for how to generate the cert, and how to use certificate pinning on clients so they can securely verify a self-signed cert.
How to configure rippled with public APIs using said certificate
How to enable "public" signing (within the LAN)—use existing tutorial
The instructions should describe:
Started here - https://github.com/ripple/xrpl-dev-portal/pull/506/files#diff-0baa9527e30921d030e81c04680ed6b9
Needs more info from subject-matter experts to be finished.