RPM: OSError: [Errno 61] No data available - Cant add SSL to NGINX (DNS Query + CloudF)

Projects Other Projects
1

Please use this template for troubleshooting questions.

My issue:
When addings an SSL via Let’s Encrypt using DNS Query with CloudFlare
I get the following error

> Internal Error
> CommandError: Saving debug log to /tmp/letsencrypt-log/letsencrypt.log
> An unexpected error occurred:
> OSError: [Errno 61] No data available: '../../archive/npm-11/cert1.pem' -> '/etc/letsencrypt/live/npm-11/cert.pem'
> Ask for help or search for solutions at [https://community.letsencrypt.org](https://community.letsencrypt.org/). See the logfile /tmp/letsencrypt-log/letsencrypt.log or re-run Certbot with -v for more details.
at /app/lib/utils.js:16:13
at ChildProcess.exithandler (node:child_process:430:5)
at ChildProcess.emit (node:events:524:28)
at maybeClose (node:internal/child_process:1104:16)
at ChildProcess._handle.onexit (node:internal/child_process:304:5)

Looking in the logs generated by LetsEncrypt this seems the most salient

2025-07-24 09:55:10,579:DEBUG:acme.client:Storing nonce: NvG2uVFoW3qU2C_N2w2upZvJfbKCRYKRS6h1wrIlj1tH-Gn2rvM
2025-07-24 09:55:10,581:INFO:certbot._internal.client:Non-standard path(s), might not work with crontab installed by your operating system package manager
2025-07-24 09:55:10,588:DEBUG:certbot._internal.storage:Creating directory /etc/letsencrypt/archive.
2025-07-24 09:55:10,593:DEBUG:certbot._internal.storage:Creating directory /etc/letsencrypt/live.
2025-07-24 09:55:10,602:DEBUG:certbot._internal.storage:Writing README to /etc/letsencrypt/live/README.
2025-07-24 09:55:10,620:DEBUG:certbot._internal.storage:Creating directory /etc/letsencrypt/archive/npm-12.
2025-07-24 09:55:10,623:DEBUG:certbot._internal.storage:Creating directory /etc/letsencrypt/live/npm-12.
2025-07-24 09:55:10,633:DEBUG:certbot._internal.log:Exiting abnormally:
Traceback (most recent call last):
File "/opt/certbot/bin/certbot", line 8, in
sys.exit(main())
^^^^^^
File "/opt/certbot/lib/python3.11/site-packages/certbot/main.py", line 19, in main
return internal_main.main(cli_args)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/opt/certbot/lib/python3.11/site-packages/certbot/_internal/main.py", line 1879, in main
return config.func(config, plugins)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/opt/certbot/lib/python3.11/site-packages/certbot/_internal/main.py", line 1585, in certonly
lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/opt/certbot/lib/python3.11/site-packages/certbot/_internal/main.py", line 143, in _get_and_save_cert
lineage = le_client.obtain_and_enroll_certificate(domains, certname)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/opt/certbot/lib/python3.11/site-packages/certbot/_internal/client.py", line 535, in obtain_and_enroll_certificate
return storage.RenewableCert.new_lineage(
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/opt/certbot/lib/python3.11/site-packages/certbot/_internal/storage.py", line 1029, in new_lineage
os.symlink(_relpath_from_file(archive_target[kind], target[kind]), target[kind])
OSError: [Errno 61] No data available: '../../archive/npm-12/cert1.pem' -> '/etc/letsencrypt/live/npm-12/cert.pem'
2025-07-24 09:55:10,638:ERROR:certbot._internal.log:An unexpected error occurred:
2025-07-24 09:55:10,640:ERROR:certbot._internal.log:OSError: [Errno 61] No data available: '../../archive/npm-12/cert1.pem' -> '/etc/letsencrypt/live/npm-12/cert.pem'

There is nothing in these folders
/archive/npm-12/…

How I encountered the problem:
CloudFlare domain I own
Token generated
Used in nginx

Solutions I’ve tried:
Does not work with other domains I also own
→ quickly ran into 5 certs per day limit
→ can see the certs in the logs - they are being issued
? a permission issue writing
It didnt havw trouble making all the subfolders

From Log

2025-07-24 09:55:10,588:DEBUG:certbot._internal.storage:Creating directory /etc/letsencrypt/archive.
2025-07-24 09:55:10,593:DEBUG:certbot._internal.storage:Creating directory /etc/letsencrypt/live.
2025-07-24 09:55:10,602:DEBUG:certbot._internal.storage:Writing README to /etc/letsencrypt/live/README.
2025-07-24 09:55:10,620:DEBUG:certbot._internal.storage:Creating directory /etc/letsencrypt/archive/npm-12.
2025-07-24 09:55:10,623:DEBUG:certbot._internal.storage:Creating directory /etc/letsencrypt/live/npm-12.
2025-07-24 09:55:10,633:DEBUG:certbot._internal.log:Exiting abnormally:
Traceback (most recent call last):

Version of NGINX or NGINX adjacent software:
Latest as of today

Deployment environment:

Docker Compose (latest) on Ubuntu 20 VM on ProxMox

2

Full output of Let’s Encrypt Logs

2025-07-24 09:54:51,968:DEBUG:certbot._internal.main:certbot version: 4.1.1
2025-07-24 09:54:51,968:DEBUG:certbot._internal.main:Location of certbot entry point: /opt/certbot/bin/certbot
2025-07-24 09:54:51,968:DEBUG:certbot._internal.main:Arguments: ['--config', '/etc/letsencrypt.ini', '--work-dir', '/tmp/letsencrypt-lib', '--logs-dir', '/tmp/letsencrypt-log', '--cert-name', 'npm-12', '--agree-tos', '--email', '********@***********', '--domains', '*.harrylemass.com', '--authenticator', 'dns-cloudflare', '--dns-cloudflare-credentials', '/etc/letsencrypt/credentials/credentials-12']
2025-07-24 09:54:51,968:DEBUG:certbot._internal.main:Discovered plugins: PluginsRegistry(PluginEntryPoint#dns-cloudflare,PluginEntryPoint#manual,PluginEntryPoint#null,PluginEntryPoint#standalone,PluginEntryPoint#webroot)
2025-07-24 09:54:52,642:DEBUG:certbot._internal.log:Root logging level set at 30
2025-07-24 09:54:52,654:DEBUG:certbot._internal.plugins.selection:Requested authenticator dns-cloudflare and installer None
2025-07-24 09:54:52,655:DEBUG:certbot._internal.plugins.selection:Single candidate plugin: * dns-cloudflare
Description: Obtain certificates using a DNS TXT record (if you are using Cloudflare for DNS).
Interfaces: Authenticator, Plugin
Entry point: EntryPoint(name='dns-cloudflare', value='certbot_dns_cloudflare._internal.dns_cloudflare:Authenticator', group='certbot.plugins')
Initialized: <certbot_dns_cloudflare._internal.dns_cloudflare.Authenticator object at 0x72ac56c34390>
Prep: True
2025-07-24 09:54:52,657:DEBUG:certbot._internal.plugins.selection:Selected authenticator <certbot_dns_cloudflare._internal.dns_cloudflare.Authenticator object at 0x72ac56c34390> and installer None
2025-07-24 09:54:52,658:INFO:certbot._internal.plugins.selection:Plugins selected: Authenticator dns-cloudflare, Installer None
2025-07-24 09:54:52,730:DEBUG:acme.client:Sending GET request to https://acme-v02.api.letsencrypt.org/directory.
2025-07-24 09:54:52,737:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): [acme-v02.api.letsencrypt.org:443](http://acme-v02.api.letsencrypt.org:443/)
2025-07-24 09:54:53,361:DEBUG:urllib3.connectionpool:[https://acme-v02.api.letsencrypt.org:443](https://acme-v02.api.letsencrypt.org/) "GET /directory HTTP/1.1" 200 995
2025-07-24 09:54:53,363:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 24 Jul 2025 09:54:53 GMT
Content-Type: application/json
Content-Length: 995
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

}
2025-07-24 09:54:53,364:DEBUG:acme.client:Requesting fresh nonce
2025-07-24 09:54:53,365:DEBUG:acme.client:Sending HEAD request to https://acme-v02.api.letsencrypt.org/acme/new-nonce.
2025-07-24 09:54:53,572:DEBUG:urllib3.connectionpool:[https://acme-v02.api.letsencrypt.org:443](https://acme-v02.api.letsencrypt.org/) "HEAD /acme/new-nonce HTTP/1.1" 200 0
2025-07-24 09:54:53,574:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 24 Jul 2025 09:54:53 GMT
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: https://acme-v02.api.letsencrypt.org/directory;rel="index"
Replay-Nonce: NvG2uVFo7f-H98jEyAle14XPQxjDbYZVEp72K5BF2t-l0warbUo
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

2025-07-24 09:54:53,575:DEBUG:acme.client:Storing nonce: NvG2uVFo7f-H98jEyAle14XPQxjDbYZVEp72K5BF2t-l0warbUo
2025-07-24 09:54:53,577:DEBUG:acme.client:JWS payload:
b'{\n "contact": [\n "mailto:********@***********"\n ],\n "termsOfServiceAgreed": true\n}'
2025-07-24 09:54:53,583:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-acct:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAiandrIjogeyJuIjogInU5Nmg4bC1NSVpJRXJhT0ZEMkFQZUI2Nmc0UzZlNDctOGZRbnFOYk1qbkZEUXV3OG1uNkswWmR5ZVFYTmZmNUxPLWdXUmp2R2VKUkhiZG9QbWpSM016b19Nc09YVU9NMEx6djR2RmFCVlhWWTg3QzItdWlZZ3EzV3NET2d6NXNRdlRQR1JubXNtOHYycE9jZWVvbjhmOGItRzRSekFMYmptdHlBM0hJU1NkeDlMckl3UWVtckdzcHlhY1c1Y2FUb2FsZTNOVW5XdUpneW9sOFAyVUg3TDZNS2t1WUxHUF9sYUFQOVpWMlhmeE9YOVliM0tMczZpM0tHSkNBWnRiZ3VnNkJVSHZPdzdTOHVGV190dXpiUjFhYnBwSktLRFFsR0FES3hRLUtzVnVrY1RkZ0V1YmpVaDJXaGNOM2FDemc5THZDT1hGYWVkYW5oRVFZTDdENzhTdyIsICJlIjogIkFRQUIiLCAia3R5IjogIlJTQSJ9LCAibm9uY2UiOiAiTnZHMnVWRm83Zi1IOThqRXlBbGUxNFhQUXhqRGJZWlZFcDcySzVCRjJ0LWwwd2FyYlVvIiwgInVybCI6ICJodHRwczovL2FjbWUtdjAyLmFwaS5sZXRzZW5jcnlwdC5vcmcvYWNtZS9uZXctYWNjdCJ9",
"signature": "hb-hx5W3FhN1-9-4g9dB9_EYvAURaT0IP4DOg-xALisNeuWhBl6xzEqfAqwbRVIghbSvQFcMTniZDuJCWvx964ZjkaoBKAyqJfCTFiCHOuhouF_uAxmUMASkIwI-3BNPejGq0EKWOY9kTuLf_U7YOfQwJSCDJBiX-GTVw3l-JX-JMMO7rO8ZumAMb4IqARkbxAMZt8v18Grs-xlDK63BhTK8vUp_vpzo8Wxdbx-Bt-PlaZYFaYlVkpkQ9iCYHTwAhYO6_DM4dO7iRZ13mwJCUem-hSeJO6uJSsvNcz3pnt5qOdAmNRant1ccUp6SeLUGnv_LqRasxIR4nj4rnx7Bug",
"payload": "ewogICJjb250YWN0IjogWwogICAgIm1haWx0bzpoYXJyeWxlbWFzc0BnbWFpbC5jb20iCiAgXSwKICAidGVybXNPZlNlcnZpY2VBZ3JlZWQiOiB0cnVlCn0"
}
2025-07-24 09:54:53,799:DEBUG:urllib3.connectionpool:[https://acme-v02.api.letsencrypt.org:443](https://acme-v02.api.letsencrypt.org/) "POST /acme/new-acct HTTP/1.1" 201 477
2025-07-24 09:54:53,809:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Thu, 24 Jul 2025 09:54:53 GMT
Content-Type: application/json
Content-Length: 477
Connection: keep-alive
Boulder-Requester: 2549918701
Cache-Control: public, max-age=0, no-cache
Link: https://acme-v02.api.letsencrypt.org/directory;rel="index", https://letsencrypt.org/documents/LE-SA-v1.5-February-24-2025.pdf;rel="terms-of-service"
Location: https://acme-v02.api.letsencrypt.org/acme/acct/2549918701
Replay-Nonce: NvG2uVFor7JuAyKpIhPkMQjSn_Y--RuvcPdaZdpiwZpdGjXmY50
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
"key": {
"kty": "RSA",
"n": "u96h8l-MIZIEraOFD2APeB66g4S6e47-8fQnqNbMjnFDQuw8mn6K0ZdyeQXNff5LO-gWRjvGeJRHbdoPmjR3Mzo_MsOXUOM0Lzv4vFaBVXVY87C2-uiYgq3WsDOgz5sQvTPGRnmsm8v2pOceeon8f8b-G4RzALbjmtyA3HISSdx9LrIwQemrGspyacW5caToale3NUnWuJgyol8P2UH7L6MKkuYLGP_laAP9ZV2XfxOX9Yb3KLs6i3KGJCAZtbgug6BUHvOw7S8uFW_tuzbR1abppJKKDQlGADKxQ-KsVukcTdgEubjUh2WhcN3aCzg9LvCOXFaedanhEQYL7D78Sw",
"e": "AQAB"
},
"createdAt": "2025-07-24T09:54:53.677909151Z",
"status": "valid"
}
2025-07-24 09:54:53,811:DEBUG:acme.client:Storing nonce: NvG2uVFor7JuAyKpIhPkMQjSn_Y--RuvcPdaZdpiwZpdGjXmY50
2025-07-24 09:54:53,862:DEBUG:certbot._internal.display.obj:Notifying user: Account registered.
2025-07-24 09:54:53,864:DEBUG:certbot._internal.main:Picked account: <Account(RegistrationResource(body=Registration(key=JWKRSA(key=<ComparableRSAKey(<cryptography.hazmat.bindings._rust.openssl.rsa.RSAPublicKey object at 0x72ac5509a250>)>), contact=(), agreement=None, status='valid', terms_of_service_agreed=None, only_return_existing=None, external_account_binding=None), uri='https://acme-v02.api.letsencrypt.org/acme/acct/2549918701', new_authzr_uri=None, terms_of_service='https://letsencrypt.org/documents/LE-SA-v1.5-February-24-2025.pdf'), 9518739d374650085355cc8d235f37c1, Meta(creation_dt=datetime.datetime(2025, 7, 24, 9, 54, 53, tzinfo=), creation_host='43fac3b03f16', register_to_eff=None))>
2025-07-24 09:54:53,873:DEBUG:certbot._internal.display.obj:Notifying user: Requesting a certificate for <em>.harrylemass.com
2025-07-24 09:54:53,924:DEBUG:acme.client:JWS payload:
b'{\n "identifiers": [\n {\n "type": "dns",\n "value": "</em>.harrylemass.com"\n }\n ]\n}'
2025-07-24 09:54:53,940:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/new-order:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjU0OTkxODcwMSIsICJub25jZSI6ICJOdkcydVZGb3I3SnVBeUtwSWhQa01RalNuX1ktLVJ1dmNQZGFaZHBpd1pwZEdqWG1ZNTAiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL25ldy1vcmRlciJ9",
"signature": "QqsjzfSKtkpSwMh1eXX7B7Ynqf4wCeI9pA0sqP6BnkY3wCliAoVmRQqrW5UzzDyri3cHyUxvcQ_rff9dv7DOhok_48X2HhSFZIoLlPPbwAZjuIIPj-md0dFH19L8vVh39t3zONQKDD1P-ZgDpfW7YWFMiYUKOLjezF4_KWtERA2oHmol6W_3WHeA6XeuT3Y2RzFSyhRRNiupXVWVwJNAxLw1uUzT69F7P_NWdH2gt65QuKLCar_eQ7YyLFhwvC1_qLoUelnouw6h-rNx9rB8TsXXFr4HrMeaofaT9gycbSbTUa1hci5cvoz0P-XplgsphXvqzxQf9EMxc_Ww6sAGqA",
"payload": "ewogICJpZGVudGlmaWVycyI6IFsKICAgIHsKICAgICAgInR5cGUiOiAiZG5zIiwKICAgICAgInZhbHVlIjogIioubGVtYXNzLmNvbS5hdSIKICAgIH0KICBdCn0"
}
2025-07-24 09:54:54,180:DEBUG:urllib3.connectionpool:[https://acme-v02.api.letsencrypt.org:443](https://acme-v02.api.letsencrypt.org/) "POST /acme/new-order HTTP/1.1" 201 349
2025-07-24 09:54:54,184:DEBUG:acme.client:Received response:
HTTP 201
Server: nginx
Date: Thu, 24 Jul 2025 09:54:54 GMT
Content-Type: application/json
Content-Length: 349
Connection: keep-alive
Boulder-Requester: 2549918701
Cache-Control: public, max-age=0, no-cache
Link: https://acme-v02.api.letsencrypt.org/directory;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/2549918701/410338141971
Replay-Nonce: NvG2uVFomExbkUnKHTvz8U6fM-TEHYe0HIUR3bleAlKs_lIElKI
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
"status": "pending",
"expires": "2025-07-31T09:54:54Z",
"identifiers": [
{
"type": "dns",
"value": "*.harrylemass.com"
}
],
"authorizations": [
"https://acme-v02.api.letsencrypt.org/acme/authz/2549918701/558110454061"
],
"finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/2549918701/410338141971"
}
2025-07-24 09:54:54,185:DEBUG:acme.client:Storing nonce: NvG2uVFomExbkUnKHTvz8U6fM-TEHYe0HIUR3bleAlKs_lIElKI
2025-07-24 09:54:54,187:DEBUG:acme.client:JWS payload:
b''
2025-07-24 09:54:54,189:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/2549918701/558110454061:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjU0OTkxODcwMSIsICJub25jZSI6ICJOdkcydVZGb21FeGJrVW5LSFR2ejhVNmZNLVRFSFllMEhJVVIzYmxlQWxLc19sSUVsS0kiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzI1NDk5MTg3MDEvNTU4MTEwNDU0MDYxIn0",
"signature": "XmQ81eWHSaCbXcLYfIY4UHbiMgH37rQaNwPhbFoUu7FK-9tjEdjYc2tKtmjoCUzSGeE3d2PBrbZweyylKMRqmYXiLoTRFykXjTsS3_4ggU6J_IhTANxkHjTjhPKLddGGHNG-0m0AqdeyxLc0KPlOkVpgeiFEGEXmK5sPbeDuhVC-M6K3HenZWDshgWtDQDPG2kwxtgX4D6jJWAeWfE1Iz-4dATV1e_dxxIbquiRzU1n_bEM29Z_6BO4TGQig8KakoGMQG8dOQV38l0Vp9FBlrfSSmOP7xX7tGHvU6MS2ev1IMbZxLqCzq2m0p8hpgk0NYP5HFia4Xe6B1EK9JLzLwQ",
"payload": ""
}
2025-07-24 09:54:54,398:DEBUG:urllib3.connectionpool:[https://acme-v02.api.letsencrypt.org:443](https://acme-v02.api.letsencrypt.org/) "POST /acme/authz/2549918701/558110454061 HTTP/1.1" 200 395
2025-07-24 09:54:54,400:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 24 Jul 2025 09:54:54 GMT
Content-Type: application/json
Content-Length: 395
Connection: keep-alive
Boulder-Requester: 2549918701
Cache-Control: public, max-age=0, no-cache
Link: https://acme-v02.api.letsencrypt.org/directory;rel="index"
Replay-Nonce: NvG2uVFo-LV6uK4RBlHONJeojWqLceP-3DKYUSP_ad8SPCveGqs
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
"identifier": {
"type": "dns",
"value": "[harrylemass.com](http://harrylemass.com/)"
},
"status": "pending",
"expires": "2025-07-31T09:54:54Z",
"challenges": [
{
"type": "dns-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall/2549918701/558110454061/mIahOw",
"status": "pending",
"token": "hHRC8EXPFha-DBhO-3zPfWkj4DgjzvkkaOgv8zSJRVQ"
}
],
"wildcard": true
}
2025-07-24 09:54:54,401:DEBUG:acme.client:Storing nonce: NvG2uVFo-LV6uK4RBlHONJeojWqLceP-3DKYUSP_ad8SPCveGqs
2025-07-24 09:54:54,403:INFO:certbot._internal.auth_handler:Performing the following challenges:
2025-07-24 09:54:54,404:INFO:certbot._internal.auth_handler:dns-01 challenge for [harrylemass.com](http://harrylemass.com/)
2025-07-24 09:54:54,406:WARNING:certbot.plugins.dns_common:Unsafe permissions on credentials configuration file: /etc/letsencrypt/credentials/credentials-12
2025-07-24 09:54:54,425:DEBUG:urllib3.util.retry:Converted retries value: 5 -> Retry(total=5, connect=None, read=None, redirect=None, status=None)
2025-07-24 09:54:54,428:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): [api.cloudflare.com:443](http://api.cloudflare.com:443/)
2025-07-24 09:54:54,934:DEBUG:urllib3.connectionpool:[https://api.cloudflare.com:443](https://api.cloudflare.com/) "GET /client/v4/zones?[name=harrylemass.com](http://name=harrylemass.com/)&per_page=1 HTTP/1.1" 200 None
2025-07-24 09:54:54,937:DEBUG:certbot_dns_cloudflare._internal.dns_cloudflare:Found zone_id of 952b3d2e2ff163a94dbeffa6f72a5145 for [harrylemass.com](http://harrylemass.com/) using name [harrylemass.com](http://harrylemass.com/)
2025-07-24 09:54:54,939:DEBUG:certbot_dns_cloudflare._internal.dns_cloudflare:Attempting to add record to zone 952b3d2e2ff163a94dbeffa6f72a5145: {'type': 'TXT', 'name': '_acme-challenge.harrylemass.com', 'content': 'VxJl8JtCAbmTSvcKDywYy-MyJKHlCeZFjpaX8CORJqc', 'ttl': 120}
2025-07-24 09:54:55,222:DEBUG:urllib3.connectionpool:[https://api.cloudflare.com:443](https://api.cloudflare.com/) "POST /client/v4/zones/952b3d2e2ff163a94dbeffa6f72a5145/dns_records HTTP/1.1" 200 None
2025-07-24 09:54:55,642:DEBUG:urllib3.connectionpool:[https://api.cloudflare.com:443](https://api.cloudflare.com/) "GET /client/v4/zones/952b3d2e2ff163a94dbeffa6f72a5145/dns_records?type=TXT&name=_acme-challenge.harrylemass.com&content=VxJl8JtCAbmTSvcKDywYy-MyJKHlCeZFjpaX8CORJqc&per_page=1 HTTP/1.1" 200 None
2025-07-24 09:54:55,645:DEBUG:certbot_dns_cloudflare._internal.dns_cloudflare:Successfully added TXT record with record_id: 60400f52d12cdab3e114d407e8e7bf9e
2025-07-24 09:54:55,649:DEBUG:certbot._internal.display.obj:Notifying user: Waiting 10 seconds for DNS changes to propagate
2025-07-24 09:55:05,651:DEBUG:acme.client:JWS payload:
b'{}'
2025-07-24 09:55:05,654:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/chall/2549918701/558110454061/mIahOw:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjU0OTkxODcwMSIsICJub25jZSI6ICJOdkcydVZGby1MVjZ1SzRSQmxIT05KZW9qV3FMY2VQLTNES1lVU1BfYWQ4U1BDdmVHcXMiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NoYWxsLzI1NDk5MTg3MDEvNTU4MTEwNDU0MDYxL21JYWhPdyJ9",
"signature": "WzLSq04mW_QnuAjxczbh-TxAeSKAMSLGLeEZIilPITQgmphvjolGIXCPjLggA6rNXIRTyZjwu9Ci2DVSoIWfT_ewzA126exqc8fqWqdXzyV9wzXR2BHQxazNuIwuY9NxFj4auWHRWx3DMe_rjR4kKjoxXpPb-MulHgpQGxSmdJo60F_zIWUqXycdVC53mSJJV_KBCIPW8eKJlgEPtY2P6VTBGCWXevPoThhgPiPgZuhRnrja58BZkIBQZlstfMnsritPcgUgjyeYNZrf5JvUIaoVDRPxl8DEm7WrsZL0RiSeCAbk4KdDfEnNc7IR__7OcOh-k9lW41bzFi2BgGnelw",
"payload": "e30"
}
2025-07-24 09:55:05,876:DEBUG:urllib3.connectionpool:[https://acme-v02.api.letsencrypt.org:443](https://acme-v02.api.letsencrypt.org/) "POST /acme/chall/2549918701/558110454061/mIahOw HTTP/1.1" 200 194
2025-07-24 09:55:05,878:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 24 Jul 2025 09:55:05 GMT
Content-Type: application/json
Content-Length: 194
Connection: keep-alive
Boulder-Requester: 2549918701
Cache-Control: public, max-age=0, no-cache
Link: https://acme-v02.api.letsencrypt.org/directory;rel="index", https://acme-v02.api.letsencrypt.org/acme/authz/2549918701/558110454061;rel="up"
Location: https://acme-v02.api.letsencrypt.org/acme/chall/2549918701/558110454061/mIahOw
Replay-Nonce: NvG2uVFoKixVfXy0memEmohuk_69UfGMf4ncNEhzev47Vxdvedc
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
"type": "dns-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall/2549918701/558110454061/mIahOw",
"status": "pending",
"token": "hHRC8EXPFha-DBhO-3zPfWkj4DgjzvkkaOgv8zSJRVQ"
}
2025-07-24 09:55:05,879:DEBUG:acme.client:Storing nonce: NvG2uVFoKixVfXy0memEmohuk_69UfGMf4ncNEhzev47Vxdvedc
2025-07-24 09:55:05,880:INFO:certbot._internal.auth_handler:Waiting for verification...
2025-07-24 09:55:06,882:DEBUG:acme.client:JWS payload:
b''
2025-07-24 09:55:06,886:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/authz/2549918701/558110454061:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjU0OTkxODcwMSIsICJub25jZSI6ICJOdkcydVZGb0tpeFZmWHkwbWVtRW1vaHVrXzY5VWZHTWY0bmNORWh6ZXY0N1Z4ZHZlZGMiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2F1dGh6LzI1NDk5MTg3MDEvNTU4MTEwNDU0MDYxIn0",
"signature": "t91F8Q-lBcnjDw-YkIfl26PDEu3JTPDbcuPMjFrQhysEqe2QTAcQtrDh4qnjMRpcDGJinLxVg-1sqsSUHTb8tI9UuYqkEfdYrqOjpGM6Ti2kQ4930tVN7xdRzsLKoqhG55tOu8hCYjuv7BGVg0X6M8r2JfaekFuiRHEfpUX6qnCOO_nHlj6N6RIJ56xqUDLLAzBZWyfb68-m-VvfIN0VQk8h902lv5VTS2fNlek7wAVKSLseTjWKGmwVXpfDKb91BCfSJ0HWcklF54Yy0RPuchaYW3H1oemwoNcVYRCCF_toqrsb8db_MEl9BFmJQqySVnWfXHh3B5kVtRcjycFswg",
"payload": ""
}
2025-07-24 09:55:07,095:DEBUG:urllib3.connectionpool:[https://acme-v02.api.letsencrypt.org:443](https://acme-v02.api.letsencrypt.org/) "POST /acme/authz/2549918701/558110454061 HTTP/1.1" 200 558
2025-07-24 09:55:07,098:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 24 Jul 2025 09:55:06 GMT
Content-Type: application/json
Content-Length: 558
Connection: keep-alive
Boulder-Requester: 2549918701
Cache-Control: public, max-age=0, no-cache
Link: https://acme-v02.api.letsencrypt.org/directory;rel="index"
Replay-Nonce: ru1tQmT3QtQj2vL0arQSxb2Crm7AHsq1kIkImpcKy2mhAXTTJJc
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
"identifier": {
"type": "dns",
"value": "[harrylemass.com](http://harrylemass.com/)"
},
"status": "valid",
"expires": "2025-08-23T09:55:06Z",
"challenges": [
{
"type": "dns-01",
"url": "https://acme-v02.api.letsencrypt.org/acme/chall/2549918701/558110454061/mIahOw",
"status": "valid",
"validated": "2025-07-24T09:55:05Z",
"token": "hHRC8EXPFha-DBhO-3zPfWkj4DgjzvkkaOgv8zSJRVQ",
"validationRecord": [
{
"hostname": "[harrylemass.com](http://harrylemass.com/)",
"addressUsed": ""
}
]
}
],
"wildcard": true
}
2025-07-24 09:55:07,099:DEBUG:acme.client:Storing nonce: ru1tQmT3QtQj2vL0arQSxb2Crm7AHsq1kIkImpcKy2mhAXTTJJc
2025-07-24 09:55:07,100:DEBUG:certbot._internal.error_handler:Calling registered functions
2025-07-24 09:55:07,102:INFO:certbot._internal.auth_handler:Cleaning up challenges
2025-07-24 09:55:07,113:DEBUG:urllib3.util.retry:Converted retries value: 5 -> Retry(total=5, connect=None, read=None, redirect=None, status=None)
2025-07-24 09:55:07,115:DEBUG:urllib3.connectionpool:Starting new HTTPS connection (1): [api.cloudflare.com:443](http://api.cloudflare.com:443/)
2025-07-24 09:55:07,566:DEBUG:urllib3.connectionpool:[https://api.cloudflare.com:443](https://api.cloudflare.com/) "GET /client/v4/zones?[name=harrylemass.com](http://name=harrylemass.com/)&per_page=1 HTTP/1.1" 200 None
2025-07-24 09:55:07,569:DEBUG:certbot_dns_cloudflare._internal.dns_cloudflare:Found zone_id of 952b3d2e2ff163a94dbeffa6f72a5145 for [harrylemass.com](http://harrylemass.com/) using name [harrylemass.com](http://harrylemass.com/)
2025-07-24 09:55:07,974:DEBUG:urllib3.connectionpool:[https://api.cloudflare.com:443](https://api.cloudflare.com/) "GET /client/v4/zones/952b3d2e2ff163a94dbeffa6f72a5145/dns_records?type=TXT&name=_acme-challenge.harrylemass.com&content=VxJl8JtCAbmTSvcKDywYy-MyJKHlCeZFjpaX8CORJqc&per_page=1 HTTP/1.1" 200 None
2025-07-24 09:55:08,306:DEBUG:urllib3.connectionpool:[https://api.cloudflare.com:443](https://api.cloudflare.com/) "DELETE /client/v4/zones/952b3d2e2ff163a94dbeffa6f72a5145/dns_records/60400f52d12cdab3e114d407e8e7bf9e HTTP/1.1" 200 None
2025-07-24 09:55:08,387:DEBUG:certbot_dns_cloudflare._internal.dns_cloudflare:Successfully deleted TXT record.
2025-07-24 09:55:08,390:DEBUG:certbot._internal.client:CSR: CSR(file=None, data=b'-----BEGIN CERTIFICATE REQUEST-----\nMIIBJTCBrAIBADAAMHYwEAYHKoZIzj0CAQYFK4EEACIDYgAES91+7uvcNeRN2Fs3\na6gKHL4/aHpprjK5wjSAJdhJkN2T1DG5IGK0hwk+oMDqIr1+7BTnwUbTQCmTFcb+\nmB01cPEkxlast1juPqBOzxAs+Yo79wZOrFZKh9dVujd+xl3ioC0wKwYJKoZIhvcN\nAQkOMR4wHDAaBgNVHREEEzARgg8qLmxlbWFzcy5jb20uYXUwCgYIKoZIzj0EAwID\naAAwZQIwLd/sjN+VJCcjwuzKuj3/8kIF0d5URft8Dkr0Kc8NXx9zYpM2BoImMI4H\nqyDoo5GYAjEAvwkVqMjdFVevnsqAM+QtvDWIh/alJOwuowo/nRGGszxTIU6/twk3\nEWn3P9eEOzqZ\n-----END CERTIFICATE REQUEST-----\n', form='pem')
2025-07-24 09:55:08,393:DEBUG:certbot._internal.client:Will poll for certificate issuance until 2025-07-24 09:56:38.392993
2025-07-24 09:55:08,394:DEBUG:acme.client:JWS payload:
b'{\n "csr": "MIIBJTCBrAIBADAAMHYwEAYHKoZIzj0CAQYFK4EEACIDYgAES91-7uvcNeRN2Fs3a6gKHL4_aHpprjK5wjSAJdhJkN2T1DG5IGK0hwk-oMDqIr1-7BTnwUbTQCmTFcb-mB01cPEkxlast1juPqBOzxAs-Yo79wZOrFZKh9dVujd-xl3ioC0wKwYJKoZIhvcNAQkOMR4wHDAaBgNVHREEEzARgg8qLmxlbWFzcy5jb20uYXUwCgYIKoZIzj0EAwIDaAAwZQIwLd_sjN-VJCcjwuzKuj3_8kIF0d5URft8Dkr0Kc8NXx9zYpM2BoImMI4HqyDoo5GYAjEAvwkVqMjdFVevnsqAM-QtvDWIh_alJOwuowo_nRGGszxTIU6_twk3EWn3P9eEOzqZ"\n}'
2025-07-24 09:55:08,398:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/finalize/2549918701/410338141971:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjU0OTkxODcwMSIsICJub25jZSI6ICJydTF0UW1UM1F0UWoydkwwYXJRU3hiMkNybTdBSHNxMWtJa0ltcGNLeTJtaEFYVFRKSmMiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2ZpbmFsaXplLzI1NDk5MTg3MDEvNDEwMzM4MTQxOTcxIn0",
"signature": "U5_yRkzgzrL0flqhpxyz5VHEsVyH-ADc82DPbOJmcrz4EM4sX3su-m6UG_3Z3sYZ9GvPyGFSULz2WOsFKpa5FKRKJXzHQOqJJKHghPZvOqX6pBNsj4seHofe1JF5RDkKkKsU2250th84dVDBliMS2_lR7VfVpyRlqs9-6EaoDNDMH5L58fkD2dkHSqWtZl2CPnr3NtWpgWyOE9wX9m87StcY8UmM6Hwq6a3nakkKPHuAyrV1BNbx0vO57RchqebxkbYsUtwcnyRY3FnHk5m1sMJayvShnVRl1nLDyjxzwBmcp8Qt5QaW33JJLjBhi_vzozJfQ9gAeBgoEAew_B-ivg",
"payload": "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"
}
2025-07-24 09:55:08,877:DEBUG:urllib3.connectionpool:[https://acme-v02.api.letsencrypt.org:443](https://acme-v02.api.letsencrypt.org/) "POST /acme/finalize/2549918701/410338141971 HTTP/1.1" 200 451
2025-07-24 09:55:08,879:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 24 Jul 2025 09:55:08 GMT
Content-Type: application/json
Content-Length: 451
Connection: keep-alive
Boulder-Requester: 2549918701
Cache-Control: public, max-age=0, no-cache
Link: https://acme-v02.api.letsencrypt.org/directory;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/2549918701/410338141971
Replay-Nonce: ru1tQmT3K0jlB8yHdb2hLPjDZsoxNY0rW2KP-CJ1bDQvV2854S8
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
"status": "valid",
"expires": "2025-07-31T09:54:54Z",
"identifiers": [
{
"type": "dns",
"value": "*.harrylemass.com"
}
],
"authorizations": [
"https://acme-v02.api.letsencrypt.org/acme/authz/2549918701/558110454061"
],
"finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/2549918701/410338141971",
"certificate": "https://acme-v02.api.letsencrypt.org/acme/cert/06e18a99c7aea82f5625f9ecf93f3e1d2250"
}
2025-07-24 09:55:08,880:DEBUG:acme.client:Storing nonce: ru1tQmT3K0jlB8yHdb2hLPjDZsoxNY0rW2KP-CJ1bDQvV2854S8
2025-07-24 09:55:09,882:DEBUG:acme.client:JWS payload:
b''
2025-07-24 09:55:09,886:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/order/2549918701/410338141971:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjU0OTkxODcwMSIsICJub25jZSI6ICJydTF0UW1UM0swamxCOHlIZGIyaExQakRac294TlkwclcyS1AtQ0oxYkRRdlYyODU0UzgiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL29yZGVyLzI1NDk5MTg3MDEvNDEwMzM4MTQxOTcxIn0",
"signature": "bccUULI0q3m_6QkxYh6rSeXXISFyW6_abqilEcaQd-jW5wjmqQG2Ccl0Gz2pEEGlU2mY0W8I73UqLEejN1zg9HeVE8BMvzV1NgMYYsp7KKC2cbevDIOYUIsjeqBuSZNyaVK4csCcqq_abOETbsI--G_wzrvyhaF8x-j-gl0Qls-LR-QSfS2p3MSS7-Lgc2tt0WQdkfkehI5IdQTce4sSgpP5sK64n2iZ9H-jajcq3KToa51sAzdHL6v-5c2q69YBXfOf-NQk8RPN0CEjtIHt40GwZ7J2kKresJ0AZmQJWiLVoK1tNg08P_Sln3QALXXByvXnraUz6JPrHpuZGUYbSg",
"payload": ""
}
2025-07-24 09:55:10,097:DEBUG:urllib3.connectionpool:[https://acme-v02.api.letsencrypt.org:443](https://acme-v02.api.letsencrypt.org/) "POST /acme/order/2549918701/410338141971 HTTP/1.1" 200 451
2025-07-24 09:55:10,099:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 24 Jul 2025 09:55:09 GMT
Content-Type: application/json
Content-Length: 451
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: https://acme-v02.api.letsencrypt.org/directory;rel="index"
Location: https://acme-v02.api.letsencrypt.org/acme/order/2549918701/410338141971
Replay-Nonce: ru1tQmT3ct7I6cno1i1_8oEpBVvTs4zFMYyw1S-PBC5o437nEew
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

{
"status": "valid",
"expires": "2025-07-31T09:54:54Z",
"identifiers": [
{
"type": "dns",
"value": "*.harrylemass.com"
}
],
"authorizations": [
"https://acme-v02.api.letsencrypt.org/acme/authz/2549918701/558110454061"
],
"finalize": "https://acme-v02.api.letsencrypt.org/acme/finalize/2549918701/410338141971",
"certificate": "https://acme-v02.api.letsencrypt.org/acme/cert/06e18a99c7aea82f5625f9ecf93f3e1d2250"
}
2025-07-24 09:55:10,101:DEBUG:acme.client:Storing nonce: ru1tQmT3ct7I6cno1i1_8oEpBVvTs4zFMYyw1S-PBC5o437nEew
2025-07-24 09:55:10,103:DEBUG:acme.client:JWS payload:
b''
2025-07-24 09:55:10,105:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/cert/06e18a99c7aea82f5625f9ecf93f3e1d2250:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjU0OTkxODcwMSIsICJub25jZSI6ICJydTF0UW1UM2N0N0k2Y25vMWkxXzhvRXBCVnZUczR6Rk1ZeXcxUy1QQkM1bzQzN25FZXciLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NlcnQvMDZlMThhOTljN2FlYTgyZjU2MjVmOWVjZjkzZjNlMWQyMjUwIn0",
"signature": "JZIlcbQn5CUAT4iz-F3ixBftpYHjdjYHOUr6U4D__MiASMpzD5QDrTtcHl6ocrqfysgTp4Cu8phQxHqJfGNHMQAvSFAr_WPVyfLrkmquvbxGogLYry3XOFyaZ7H4W5EJcDzsXRIqUO3Xvn6v7MYLGNXY5oTYFpJqt955DtVvbFDoEmTnenOny6nY2BmbTQ5Ngeyb7M_3rBuZp0kh2R9JnSuBHYVz7vryp9zHvJNeykoy8wZPya-*1sYkAUDi-vEkATGRT8XK1-k6BWhSDqdKZ8ZwWz6HYp3lBtSgmYxSu559vNiqVWhLJT97Mpt8N9K*-OH3UTjZrZUytpyivaRbJQ",
"payload": ""
}
2025-07-24 09:55:10,316:DEBUG:urllib3.connectionpool:[https://acme-v02.api.letsencrypt.org:443](https://acme-v02.api.letsencrypt.org/) "POST /acme/cert/06e18a99c7aea82f5625f9ecf93f3e1d2250 HTTP/1.1" 200 2897
2025-07-24 09:55:10,318:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 24 Jul 2025 09:55:10 GMT
Content-Type: application/pem-certificate-chain
Content-Length: 2897
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: https://acme-v02.api.letsencrypt.org/directory;rel="index", https://acme-v02.api.letsencrypt.org/acme/cert/06e18a99c7aea82f5625f9ecf93f3e1d2250/1;rel="alternate"
Replay-Nonce: NvG2uVFoWZv-hfHPS5Hs7bR7SwlyBYMlhmriHi8vIRCwB1wasts
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

-----BEGIN CERTIFICATE-----
DELETED
-----END CERTIFICATE-----

-----BEGIN CERTIFICATE-----
DELETED
-----END CERTIFICATE-----

2025-07-24 09:55:10,320:DEBUG:acme.client:Storing nonce: NvG2uVFoWZv-hfHPS5Hs7bR7SwlyBYMlhmriHi8vIRCwB1wasts
2025-07-24 09:55:10,321:DEBUG:acme.client:JWS payload:
b''
2025-07-24 09:55:10,324:DEBUG:acme.client:Sending POST request to https://acme-v02.api.letsencrypt.org/acme/cert/06e18a99c7aea82f5625f9ecf93f3e1d2250/1:
{
"protected": "eyJhbGciOiAiUlMyNTYiLCAia2lkIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2FjY3QvMjU0OTkxODcwMSIsICJub25jZSI6ICJOdkcydVZGb1dadi1oZkhQUzVIczdiUjdTd2x5QllNbGhtcmlIaTh2SVJDd0Ixd2FzdHMiLCAidXJsIjogImh0dHBzOi8vYWNtZS12MDIuYXBpLmxldHNlbmNyeXB0Lm9yZy9hY21lL2NlcnQvMDZlMThhOTljN2FlYTgyZjU2MjVmOWVjZjkzZjNlMWQyMjUwLzEifQ",
"signature": "MLdiHT61BDpMnN9HEnoRI_eHnBYvwS-jo2rfZVw2-qTo2jfFJrQ9x3DQVdy3yzLAPy03RBSiVr5Bt9agCz2ZV2wlIo44PokRuriVfPYDSy6-MueRKTtCsd5yWy8Vw0uGqy9OGasvusaHSrOUWSOdW2LzPVJWzi1nC9kpwat-XXFv2l6JbZzrOOA6nq28_09XOwofbI8WfdIJn2vhWSElwyeTfsfde2Npb3gMbF3HnsHdGSzPKvPG7ZsACH90bMeTACIm0LHoPGEGm8KRGkUsi-3tIguoivuiX9HxDqqKL8TGFY0UW02gW4EFOtBhusUBYHCRizk2pBB2VSJKgJ9p3w",
"payload": ""
}
2025-07-24 09:55:10,537:DEBUG:urllib3.connectionpool:[https://acme-v02.api.letsencrypt.org:443](https://acme-v02.api.letsencrypt.org/) "POST /acme/cert/06e18a99c7aea82f5625f9ecf93f3e1d2250/1 HTTP/1.1" 200 2332
2025-07-24 09:55:10,578:DEBUG:acme.client:Received response:
HTTP 200
Server: nginx
Date: Thu, 24 Jul 2025 09:55:10 GMT
Content-Type: application/pem-certificate-chain
Content-Length: 2332
Connection: keep-alive
Cache-Control: public, max-age=0, no-cache
Link: https://acme-v02.api.letsencrypt.org/directory;rel="index", https://acme-v02.api.letsencrypt.org/acme/cert/06e18a99c7aea82f5625f9ecf93f3e1d2250/0;rel="alternate"
Replay-Nonce: NvG2uVFoW3qU2C_N2w2upZvJfbKCRYKRS6h1wrIlj1tH-Gn2rvM
X-Frame-Options: DENY
Strict-Transport-Security: max-age=604800

-----BEGIN CERTIFICATE-----
DELETED
-----END CERTIFICATE-----

-----BEGIN CERTIFICATE-----
DELETED
-----END CERTIFICATE-----

2025-07-24 09:55:10,579:DEBUG:acme.client:Storing nonce: NvG2uVFoW3qU2C_N2w2upZvJfbKCRYKRS6h1wrIlj1tH-Gn2rvM
2025-07-24 09:55:10,581:INFO:certbot._internal.client:Non-standard path(s), might not work with crontab installed by your operating system package manager
2025-07-24 09:55:10,588:DEBUG:certbot._internal.storage:Creating directory /etc/letsencrypt/archive.
2025-07-24 09:55:10,593:DEBUG:certbot._internal.storage:Creating directory /etc/letsencrypt/live.
2025-07-24 09:55:10,602:DEBUG:certbot._internal.storage:Writing README to /etc/letsencrypt/live/README.
2025-07-24 09:55:10,620:DEBUG:certbot._internal.storage:Creating directory /etc/letsencrypt/archive/npm-12.
2025-07-24 09:55:10,623:DEBUG:certbot._internal.storage:Creating directory /etc/letsencrypt/live/npm-12.
2025-07-24 09:55:10,633:DEBUG:certbot._internal.log:Exiting abnormally:
Traceback (most recent call last):
File "/opt/certbot/bin/certbot", line 8, in
sys.exit(main())
^^^^^^
File "/opt/certbot/lib/python3.11/site-packages/certbot/main.py", line 19, in main
return internal_main.main(cli_args)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/opt/certbot/lib/python3.11/site-packages/certbot/_internal/main.py", line 1879, in main
return config.func(config, plugins)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/opt/certbot/lib/python3.11/site-packages/certbot/_internal/main.py", line 1585, in certonly
lineage = _get_and_save_cert(le_client, config, domains, certname, lineage)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/opt/certbot/lib/python3.11/site-packages/certbot/_internal/main.py", line 143, in _get_and_save_cert
lineage = le_client.obtain_and_enroll_certificate(domains, certname)
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/opt/certbot/lib/python3.11/site-packages/certbot/_internal/client.py", line 535, in obtain_and_enroll_certificate
return storage.RenewableCert.new_lineage(
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
File "/opt/certbot/lib/python3.11/site-packages/certbot/_internal/storage.py", line 1029, in new_lineage
os.symlink(_relpath_from_file(archive_target[kind], target[kind]), target[kind])
OSError: [Errno 61] No data available: '../../archive/npm-12/cert1.pem' -> '/etc/letsencrypt/live/npm-12/cert.pem'
2025-07-24 09:55:10,638:ERROR:certbot._internal.log:An unexpected error occurred:
2025-07-24 09:55:10,640:ERROR:certbot._internal.log:OSError: [Errno 61] No data available: '../../archive/npm-12/cert1.pem' -> '/etc/letsencrypt/live/npm-12/cert.pem'
3

Heya @MCMXD! This seems to be an issue with Let’s Encrypt, not with NGINX. Although it seems like you already opened an issue in the Let’s Encrypt forum and they directed you to the NPM forum. Sadly I really am not familiar with Certbot’s implementation so there is little help I can offer. You might be able to try to open an issue either in the NPM repo or the Certbot repo? I would probably start with the Cerbot repo :slightly_smiling_face: