It’s annoying that Namecheap doesn’t support Certbot to create and auto renew Let’s Encrypt SSL Cert.

I will document the steps needed to renew SSL cert manually using DNS Challenge.

Step 1 – Install Certbot:

sudo apt install certbot

Step 2 – Renew certificate using Certbot:

Replace *.DOMAIN to your domain name.

sudo certbot certonly --manual --preferred-challenges dns -d "*.DOMAIN"

Step 3 – Replace DNS TXT ACME Challenge in Namecheap:

Verify the setting using nslookup before continuing on Certbot.

nslookup -type=TXT _acme-challenge.DOMAIN

Final step – Restart NGINX and verify:

If the above are done correctly, the cert should be renewed by now. Restart NGINX for the new SSL cert to take effect.

sudo systemctl restart nginx