It is pretty confusing how to add custom root certificates to Python's trusted cert list as it doesn't use system certs. Instead I just disabled verification entirely. Note this is for local development only and SHOULD NOT BE USED IN PRODUCTION:
$ export PYTHONHTTPSVERIFY=0
This is helpful for capturing and inspecting outbound packets using Charles proxy or a similar tool.