Solved: Removing unwanted Domain aliases from ACME.SH

Where necessary, you may need to have access to a VPS server so you can follow how to implement the steps in this article.  You can get a cheaper VPS Server from Contabo with 4vCPU cores, 8GM RAM, and 32TB Bandwidth for less than $5.50 per month. Get this deal here now

Table of Contents

Cloud VPS S

$5.50 Monthly
  • 4 vCPU Cores | 8GB RAM


$15.50 Monthly
  • 6 vCPU Cores | 16GB RAM


$17.50 Monthly
  • 8 vCPU Cores | 24GB RAM

ACME.SH is a script for handling Let’s Encrypt SSL certificates, and it supports multiple domain certificates.

If you’re facing issues renewing a multi-domain certificate with ACME.SH and one of the domains is no longer in use, you might want to consider the following steps:

Update ACME.SH

Ensure that you are using the latest version of ACME.SH. You can upgrade to the latest version using the following command: --upgrade

Remove Unnecessary Domains

If one of the domains is no longer in use and you don’t want to renew it, you can remove it from the certificate by running the following command: --remove -d

Renew the Certificate

After removing the unnecessary domain, attempt to renew the certificate for the remaining domains in the list

The following is the general ACME.SH renewal command you can use: --renew -d -d -d

However, if the above command doesn’t work, then you can define the installation mode based on the platform you’re using: For example:

  • Renew for Standalone server

You may be required to add the --standalone option in the command as seen below: --renew --standalone -d -d -d -w /home/wwwroot/

  • Renew for apache

You will need to add the --apache option in the command: --renew --apache -d -d -d
  • Renew for Nginx

Add the --nginx option as seen below: --renew --nginx -d -d -d

Force Renewal

If you are still facing issues, you can try forcing the renewal with the --force option: --renew -d --force

DNS ALIAS Configuration

If you’re using DNS ALIAS records, double-check that the DNS records for the active domains are still configured correctly.,

You can add the --dns option when issuing the certificate to be able to retrive the TXT records you need for the DNS verification: --issue --dns -d -d -d

The output of the above command will be as seen below:

Add the following txt record:
Txt value:9ihDbjYfTExAYeDs4DBUeuTo18KBzwvTEjUnSwd32-c

Add the following txt record:
Txt value:9ihDbjxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

Please add those txt records to the domains. Waiting for the dns to take effect.

Now, all you have to do is to run the following command: --renew -d

Check Logs

Review the logs for any specific error messages or warnings. The logs can provide valuable information about what might be going wrong:

cat /root/*.log

Contact Support

If all else fails, consider reaching out to the ACME.SH community or support for assistance. They may be able to provide specific guidance based on the error messages you encounter.

Hire us to handle what you want

Hire us through our Fiverr Profile and leave all the complicated & technical stuff to us. Here are some of the things we can do for you:

  • Website migration, troubleshooting, and maintenance.
  • Server & application deployment, scaling, troubleshooting, and maintenance
  • Deployment of Kubernetes, Docker, Cloudron, Ant Media, Apache, Nginx,  OpenVPN, cPanel, WHMCS, WordPress, and more
  • Everything you need on AWS, IBM Cloud, GCP, Azure, Oracle Cloud, Alibaba Cloud, Linode, Contabo, DigitalOcean, Ionos, Vultr, GoDaddy, HostGator, Namecheap, DreamHost, and more.

We will design, configure, deploy, or troubleshoot anything you want. Starting from $10, we will get your job done in the shortest time possible. Your payment is safe with Fiverr as we will only be paid once your project is completed.