Switch to https in requirements.txt

It's annoying for external users otherwise.