Managing Self-signed Certificates
As per the below link it's been mention that by default XSOAR uses self signed certificates for secure HTTP connection.
https://docs.paloaltonetworks.com/cortex/cortex-xsoar/6-5/cortex-xsoar-admin/installation/post-installation-checklist/https-with-a
...