The fact is that before I had a HAproxy with normal certificates (not wildcard) and renewed them without problems with a script, but this does not work with the wildcards:
No, not using DNS manual mode. To renew the cert automatically, certbot must have a way to automatically update your DNS records, which it doesn't with the invocation you've given. You'll need to see if there's a certbot hook script available for your DNS host, consider using another client like acme.sh with better DNS support, or look into running acme-dns to handle your validation tokens.
You used “–manual” for the first installation of the certificate. You had to put the challenge(s) into the DNS manually. For the automatism you have to update the DNS automatically, via a script. All this depends on the interface for your DNS update.