Let encrypt SSL renewal problem

Hi , am enounter this error . May i know how to resolve TXT issue

My domain is: athmanagement.com

I ran this command:

[root@localhost ~]# /www/server/panel/pyenv/bin/python -u /www/server/panel/class/acme_v2.py --renew=1

|-A total of 2 certificates need to be renewed
|-Renewing certificate number of 1，domain: ['app.athmanagement.com']..
|-Creating order..
|-Getting verification information..
|-Verification type: dns-01
|-Verifying domain name..
|-Attempt to verify DNS records locally, domain name: acme-challenge.app.athmanagement.com, type: TXT record value: OJITZsVzXGJC8-zRXJRLO5zLL7IRN0oGQ2Ob7zIOQ-g
/www/server/panel/class/acme_v2.py:919: DeprecationWarning: please use dns.resolver.resolve() instead
ns = dns.resolver.query(domain, s_type)
|-Number of verifications: 1, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 2, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 3, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 4, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 5, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 6, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 7, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 8, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 9, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 10, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 11, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 12, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 13, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 14, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 15, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 16, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 17, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 18, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 19, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Number of verifications: 20, value: 3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY
|-Local authentication failed!
|-1 Query verification results..
|-Verification failed

|-A wrong TXT record was found on ['_acme-challenge.app.athmanagement.com']: ['3e7y9sU4vWUylgbMW31vS-kGNC2mU5jjOlSC_xeOkhY'], please check whether the TXT resolution is correct, if it is applied by DNSAPI, please try again in 10 minutes!

|-Renewing certificate number of 2，domain: ['dev.athmanagement.com']..
|-Creating order..
|-Getting verification information..
|-Verification type: dns-01
|-Verifying domain name..
|-Attempt to verify DNS records locally, domain name: acme-challenge.dev.athmanagement.com, type: TXT record value: aeESOtjtcM_Wc3aNAtba8GKHCoM1Zb78vicye3HzF2E
|-Number of verifications: 1, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 2, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 3, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 4, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 5, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 6, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 7, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 8, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 9, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 10, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 11, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 12, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 13, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 14, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 15, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 16, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 17, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 18, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 19, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Number of verifications: 20, value: HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s
|-Local authentication failed!
|-1 Query verification results..
|-Verification failed

|-A wrong TXT record was found on ['_acme-challenge.dev.athmanagement.com']: ['HTrdZBxamjh_VHRsTspaEOvWBwXuVcV8O8nlTebs54s'], please check whether the TXT resolution is correct, if it is applied by DNSAPI, please try again in 10 minutes!

Troubelshooting:

i found the TXT entries record mention domain name does not exist but my domain still active .

image1714×624 56 KB

It looks like acme_v2 is expecting the DNS TXT record to have that value but it has the value starting with 3e7y instead. You can easily see the TXT value in the public DNS with the google dig tool (below).
Enter _acme-challenge.app.athmanagement.com for the NAME and choose TXT record.

Did you have to update the DNS TXT record manually for your two previous certs? Each time you request new certs there will be a new value for the TXT data.

https://toolbox.googleapps.com/apps/dig/#TXT/

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.