I tried to renew certificates but the challenge verification failed. The reason is because a self-signed certificate is required to connect to the website (SSLVerifyClient set to require in the apache2 conf).
As workaround I temporarily disabled the client authentication but I would like to know if it’s possible to provide to let’s encrypt the client certificate to be able to connect and pass verification challenge.
Otherwise how can I automatically renew certs in my case ? or is there any way to expand the 99-day lifetimes for certificates ?
Thank you for your help.