Prerequisite

Clone master branch from certbot Github repo here

Easiest solution

cd in to your cloned directory let’s say ~/certbot

Set your domain as an env var DOMAIN=mimimi.fun (replace mimimi.fun with your own domain)

Run this

./certbot-auto certonly --manual -d *.$DOMAIN -d $DOMAIN --agree-tos --manual-public-ip-logging-ok --preferred-challenges dns-01 --server https://acme-v02.api.letsencrypt.org/directory

Follow the instruction given(add TXT record to your DNS record to verify your ownership). Note that applying a wildcard domain+your main domain without prefix requires 2 challenges to be set, you can add two records one by one(do NOT remove neither before you get your certificates)

If everything goes well, you will have your certificates saved here. /etc/letsencrypt/live/mimimi.fun/

Now go to your web server and set up https 😼