Topics

Hello
I've a OPNsense installation with HAproxy managing a couple of subdomains providing SSL offloading and certificates for every subdomain managed by ACME client and issued from Letsencrypt.
The configuration is running great from years and survived several software updates without a problem.
Now it stopped renewing the certificates, without any modification or software update. It did an auto update of the certificates in june without problems, but failed the update for a couple of other subdomains yesterday.
The error in ACME logs is:

Code Select Expand

2025-07-30T10:15:10 opnsense AcmeClient: validation for certificate failed: filetransfer.XXXXXXXXXX.XX
2025-07-30T10:15:10 opnsense AcmeClient: domain validation failed (http01)
2025-07-30T10:15:08 opnsense AcmeClient: AcmeClient: The shell command returned exit code '1': '/usr/local/sbin/acme.sh --issue --syslog 9 --debug 3 --server 'letsencrypt' --webroot /var/etc/acme-client/challenges --home '/var/etc/acme-client/home' --cert-home '/var/etc/acme-client/cert-home/64dde6d44d35b5.13257403' --certpath '/var/etc/acme-client/certs/64dde6d44d35b5.13257403/cert.pem' --keypath '/var/etc/acme-client/keys/64dde6d44d35b5.13257403/private.key' --capath '/var/etc/acme-client/certs/64dde6d44d35b5.13257403/chain.pem' --fullchainpath '/var/etc/acme-client/certs/64dde6d44d35b5.13257403/fullchain.pem' --domain 'filetransfer.XXXXXXXXXX.XX' --days '1' --force --keylength '4096' --accountconf '/var/etc/acme-client/accounts/64ddda572ce593.09763895_prod/account.conf''
Could you please help me to figure out what is going wrong?
Thank you