install-plattform local certificates

[phac008]

instead of manual mkcert at the beginning a more automatic approach:

https://dischord.org/2024/05/18/trusted-local-tls-certificates-with-mkcert-and-kubernetes/

[jkleinlercher]

Or let cert-manager itself create a root CA to get rid of mkcert at all: https://skarlso.github.io/2023/10/25/self-signed-locally-trusted-certificates-with-cert-manager/

[jkleinlercher]

809 could probably also be a solution for this