Maybe use a label butter.sh/letsencrypt-cert-id which implements the grouping, or group by namespace only.
An open question is still, whether requesting a new certificate that contains a domain whose original certificate had been signed just recently is a problem. This old certificate has to be properly revoked afterwards as well.
Maybe use a label
butter.sh/letsencrypt-cert-id
which implements the grouping, or group by namespace only.An open question is still, whether requesting a new certificate that contains a domain whose original certificate had been signed just recently is a problem. This old certificate has to be properly revoked afterwards as well.