Renewal appears to be successful yet I still get the renewal email


#1

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. https://crt.sh/?q=example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is: http://rimkereso.hu

I ran this command: certbot renew

It produced this output:

Saving debug log to /var/log/letsencrypt/letsencrypt.log


Processing /etc/letsencrypt/renewal/es.rhymery.net.conf

Cert not yet due for renewal
Plugins selected: Authenticator nginx, Installer nginx


Processing /etc/letsencrypt/renewal/pixelperfect.hu.conf

Cert not yet due for renewal
Plugins selected: Authenticator nginx, Installer nginx


Processing /etc/letsencrypt/renewal/cz.azrhymes.com.conf

Cert not yet due for renewal
Plugins selected: Authenticator nginx, Installer nginx


Processing /etc/letsencrypt/renewal/mashairi.co.ke.conf

Cert not yet due for renewal
Plugins selected: Authenticator nginx, Installer nginx


Processing /etc/letsencrypt/renewal/rime.com.hr.conf

Cert not yet due for renewal
Plugins selected: Authenticator nginx, Installer nginx


Processing /etc/letsencrypt/renewal/www.rimkereso.hu.conf

Cert not yet due for renewal
Plugins selected: Authenticator nginx, Installer nginx


The following certs are not due for renewal yet:
/etc/letsencrypt/live/es.rhymery.net/fullchain.pem expires on 2019-01-26 (skipped)
/etc/letsencrypt/live/pixelperfect.hu/fullchain.pem expires on 2019-01-18 (skipped)
/etc/letsencrypt/live/cz.azrhymes.com/fullchain.pem expires on 2019-01-18 (skipped)
/etc/letsencrypt/live/mashairi.co.ke/fullchain.pem expires on 2019-01-26 (skipped)
/etc/letsencrypt/live/rime.com.hr/fullchain.pem expires on 2019-01-18 (skipped)
/etc/letsencrypt/live/www.rimkereso.hu/fullchain.pem expires on 2019-01-18 (skipped)
No renewals were attempted.

My web server is (include version): nginx 1.10.3

The operating system my web server runs on is (include version): Debian GNU/Linux 9 (stretch)

My hosting provider, if applicable, is: digitalocean.com

I can login to a root shell on my machine (yes or no, or I don’t know): yes

I’m using a control panel to manage my site (no, or provide the name and version of the control panel): no

More details: I’m behind Cloudflare CDN, that I switch off before the renewal and switch back on again right after. The certificates appear to have been updated but I still get your notification e-mail from Let’s Encrypt Expiry Bot expiry@letsencrypt.org .
Should I be worried?

Best,
Barney


#2

Which certificates are mentioned in the expiration email?

You’ll get emails for certificates you’re no longer using, if you’ve deleted them, or replaced them with new certificates with different combinations of names.


#3

Thanks a lot mnordhoff, that explains it, I’m relieved.