I created two separate certificates using certbot for two separate domains, giftyweddings.com and cdnupload.com. The first certificate looks fine, with common name giftyweddings.com and alternate names giftyweddings.com, www.giftyweddings.com. But SSL Labs shows that the second certificate I created, for cdnupload.com/www.cdnupload.com, contains the certificate for that domain PLUS the giftyweddings.com certificate as “Certificate #2”. Browsers don’t seem to care about this, but I’d like to know how I can create the separate separate certificates without the giftyweddings.com injecting itself into the cdnupload.com one.
The certbot command lines I’m using are:
Links to the SSL Labs reports are:
Any idea why the two certs are “interfering” with each other and how to fix that? Or any other recommendations or best practices?