Front Door Standard/Premium (Preview) - Unable to Add Wildcard Custom Domain with SSL Certificate

I've got an Azure FrontDoor (preveiw) Premium endpoint setup and I'm trying to add a custom wildcard domain (*.example.com) so that I can use the Rule Set to direct traffic between server environments setup as origin groups.

I am using Azure DNS, and Azure KeyValut to hold the secret.

The problem I'm facing is that when adding the *.example.com custom domain, it will not let me select the wildcard certificate that matches *.example.com.

Since it is a wildcard, Azure Managed Certificates wont work (I've tried and it's noted in the docs).

If I try and add a custom domain like hello.example.com the *.example.com certificate does show up and lets me add it.

What am I missing, or doing wrong / need to change on the certificate to be able to use it for the custom wildcard domain?