interesting i noticed after a few re-runs on the letsencrypt client, the generated *_chain.pem returns back to same number ?
IMPORTANT NOTES:
- Congratulations! Your certificate and chain have been saved at
/root/0001_chain.pem. Your cert will expire on 2016-04-16. To
obtain a new version of the certificate in the future, simply run
Let's Encrypt again.
- If you like Let's Encrypt, please consider supporting our work by:
Donating to ISRG / Let's Encrypt: https://letsencrypt.org/donate
Donating to EFF: https://eff.org/donate-le
prior to the last run, the 0005_chain.pem was latest but after this run it goes back to 0001_chain.pem
ls -lAhrt /usr/local/nginx/conf/ssl/${vhostname} | grep pem
-rw-r--r-- 1 root root 359 Jan 17 08:36 le20.http2ssl.xyz-privkey-p384.pem
-rw-r--r-- 1 root root 2.6K Jan 17 09:07 0001_chain.pem
-rw-r--r-- 1 root root 1.1K Jan 17 09:07 0000_chain.pem
-rw-r--r-- 1 root root 1.5K Jan 17 09:07 0000_cert.pem
-rw-r--r-- 1 root root 2.6K Jan 17 09:07 0003_chain.pem
-rw-r--r-- 1 root root 1.1K Jan 17 09:07 0002_chain.pem
-rw-r--r-- 1 root root 1.5K Jan 17 09:07 0001_cert.pem
-rw-r--r-- 1 root root 2.6K Jan 17 09:25 0005_chain.pem
-rw-r--r-- 1 root root 1.1K Jan 17 09:25 0004_chain.pem
-rw-r--r-- 1 root root 1.5K Jan 17 09:25 0002_cert.pem
so there’s only 3 rotations for full chane 0001, 0003 and 0005 pem files right ? the dates on those files don’t seem to be changing when i go through 3+ runs