Getting a certificate and using a certificate a two separate things.
Sometimes the using part can be "assisted" with simple scripting.
Certbot is very good at getting certs.
Apache is very bad at requiring coding compliance.
Certbot doesn't always understand what apache is willing to run.
So, ultimately the real burden in using certs lies on the server admin.
The most likely way that would fail is if that new domain is not clearly defined in your apache config.
Let's have a look at: certbot certificates apachectl -S
Please don’t REVOKE certs when you are no longer going to use them.
You can just DELETE them instead.
Using: certbot delete --cert-name newhatchin.ossphinc.com
You may also have to manually remove it from wherever it may have been used (or delete the entire file using it [if no longer needed]).
See file: /etc/apache/sites-enabled/000-default-le-ssl.conf