Docker version 27.1.1, build 6312585
Docker Compose version v2.29.1-desktop.1

openssl genrsa -out private.key 2048

openssl rsa -in private.key -pubout -out public.key

writing RSA key

openssl req -new -key private.key -out server.csr

You are about to be asked to enter information that will be incorporated
into your certificate request.
What you are about to enter is what is called a Distinguished Name or a DN.
There are quite a few fields but you can leave some blank
For some fields there will be a default value,
If you enter '.', the field will be left blank.
-----
Country Name (2 letter code) [AU]:
State or Province Name (full name) [Some-State]:
Locality Name (eg, city) []:
Organization Name (eg, company) [Internet Widgits Pty Ltd]:
Organizational Unit Name (eg, section) []:
Common Name (e.g. server FQDN or YOUR name) []: localhost
Email Address []:

Please enter the following 'extra' attributes
to be sent with your certificate request
A challenge password []:
An optional company name []:

openssl x509 -days 365 -req -sha256 -signkey private.key < server.csr > server.crt

Certificate request self-signature ok
subject=C = AU, ST = Some-State, O = Internet Widgits Pty Ltd, CN = localhost

├── compose.yml
└── mailpit-data
    ├── authfile
    ├── private.key
    ├── public.key
    ├── server.crt
    └── server.csr

services:
  mailpit:
    image: axllent/mailpit:v1.20.1
    container_name: mailpit
    restart: unless-stopped
    ports:
      - 8025:8025
    volumes:
      - ./mailpit-data:/data
    environment:
      - MP_UI_AUTH_FILE=/data/authfile
      - MP_UI_TLS_CERT=/data/server.crt
      - MP_UI_TLS_KEY=/data/private.key

docker compose up -d