Please note crt.sh
by default also shows the pre-certificates which are used to get the SCTs from the certificate logs to embed in the final "real" certificate. Those pre-certificates aren't useful and Let's Encrypt doesn't count them towards the rate limits. You could see the pre-certificate and the actual certificate as just "one certificate".
You can also append the string &deduplicate=y
to the query of the URL so it only lists one of the two. (It can actually list just the pre-certificates in stead of the actual certificates though, which might be confusing. But this option is helpful to show the number of actual issued certificates.)
See: https://crt.sh/?q=blackwolf.host&deduplicate=y
And yes, even with the deduplicate option, there are quite a few certificates for your domain. You should have been able to use the first few certificates and it shouldn't be necessary to keep issueing new certificates if you already have one for that hostname.
Also: you can combine multiple hostnames into one certificate. I see you have multiple subdomains, but have many certificates for just one hostname. If possible, I would recommend to put all the required hostnames into just one certificate. And don't forget the www
subdomain, if necessary.