Prerequisite
Clone master branch from certbot Github repo here
Easiest solution
cd in to your cloned directory let’s say ~/certbot
Set your domain as an env var DOMAIN=mimimi.fun
(replace mimimi.fun
with your own domain)
Run this
./certbot-auto certonly --manual -d *.$DOMAIN -d $DOMAIN --agree-tos --manual-public-ip-logging-ok --preferred-challenges dns-01 --server https://acme-v02.api.letsencrypt.org/directory
Follow the instruction given(add TXT record to your DNS record to verify your ownership). Note that applying a wildcard domain+your main domain without prefix requires 2 challenges to be set, you can add two records one by one(do NOT remove neither before you get your certificates)
If everything goes well, you will have your certificates saved here. /etc/letsencrypt/live/mimimi.fun/
Now go to your web server and set up https 😼