I am not able to renew the SSL certificate from Let’s Encrypt that is provided from Netlify for one of my websites (www.molecules.om) which is associated with the email ID that I am sending the mail request from.
Its Showing me the following error:-
* SniCertificate::CertificateNonvalidError: Unable to verify challenge for molecules.om: Incorrect TXT record “3245” found at _acme-challenge.molecules.om We can’t renew your Let’s Encrypt certificate automatically until the issue is resolved. Check our troubleshooting guide for more information on how to fix the problem, and then renew the certificate.
Please let me know where I can get the _acme-challenge token from in order to add a TXT record under the domain records.
Actually, yes, inactive DNS zones with our DNS service do cause problems. The most common issue they cause is that our service will be unable to create or update the automatic Let’s Encrypt SSL certificates for this production domain. This can affect any updates for the Let’s Encrypt SSL certificates our service provisions, including updates for branch subdomains .
For your External DNS configuration, I do see you are pointing an A Record for molecules.om to 126.96.36.199. For www.molecules.om, you’ll want to point a CNAME Record to glowing-pavlova-5eb0db.netlify.app.
Once the DNS change has propagated, please try clicking Renew certificate here: