I would like to preserve all certbot state in the Hashicorp’s Vault system, and then restore that state to check for renewal. This way cert renewal could be done on any Jenkins worker. I could preserve the whole state as a gzip archive, but I would rather just store the needed files as individual keys, thus being able to use them directly in other software like Terraform. Which files are required to store and restore for the certbot to be able to work?
I use route53 DNS method, manually using the certificate files afterwards. Thanks!!