Wildcard Let's Encrypt renewal failing with NXDOMAIN on Netlify DNS domain

Title: Wildcard Let’s Encrypt renewal failing with NXDOMAIN on Netlify DNS domain

Site name: euphonious-profiterole-b4278b
Custom domain: inclus-ai.com (using Netlify DNS)

My Let’s Encrypt wildcard certificate expired today and the automatic renewal is failing with:

SniCertificate::CertificateValidationError: Unable to verify challenge for *.inclus-ai.com: DNS problem: NXDOMAIN looking up TXT for _acme-challenge.inclus-ai.com - check that a DNS record exists for this domain

Both inclus-ai.com and www.inclus-ai.com show as Netlify DNS with green checkmarks in Domain management, so the _acme-challenge TXT record should be written automatically. There is no Renew certificate button available in the HTTPS panel, only Set custom certificate.

Could you please regenerate the ACME challenge TXT record and re-provision the wildcard certificate from your end? The www subdomain is currently returning ERR_CERT_COMMON_NAME_INVALID for all visitors, so the site is effectively down.

Thank you.

Hi, @HroGyrl414. The domain inclus-ai.com is not using Netlify DNS. This is the reason that a wildcard SSL certificate cannot be provisioned.

That said, I do show successful SSL provisioning occurred on 2026-04-17, which is the day after this post was created. It looks like the SSL is working correctly now.

However, if it is not or if there are follow-up questions, please reply here anytime.