Complete the SSL Certificate Renewal process before proceeding with platform-specific deployments.
Deployment Platforms
Certificates need to be deployed to the following platforms:Bunny CDN
Deploy certificates to 6 CDN hostnames across different zones.View Bunny CDN Guide →
Load Balancers
Update certificates on Hetzner and Digital Ocean load balancers.View Load Balancers Guide →
AWS3 Nodes
Build and deploy Docker images with updated certificates for MinIO services.View AWS3 Nodes Guide →
Servers
Deploy certificates to Stations and Forum servers via SCP and nginx reload.View Servers Guide →
Certificate File Locations
After running the renewal script, certificate files are typically located in:Certificate File
Full certificate chain (
.crt or .pem)Usually contains the domain certificate and intermediate certificatesPrivate Key
Private key file (
.key or .pem)Keep this file secure and never share publiclyFull Chain
Complete certificate chainIncludes: Domain certificate + Intermediate certificates + Root certificate (optional)
Verification Checklist
After deploying certificates to all platforms, verify each deployment:1
Bunny CDN
- All 6 hostnames have updated certificates
- SSL validation passes for each hostname
- No certificate warnings in browser
2
Load Balancers
- Hetzner load balancers updated (satellite-images-lb, mapi-lb, mapi-lb2)
- Digital Ocean load balancer updated
- Account security certificate uploaded (Digital Ocean)
- Services responding with new certificate
3
AWS3 Nodes (MinIO)
- Docker image built with new certificates
- Image pushed to registry
- Docker stack deployed successfully
- minio_nginx service running with new image
- minio_server service running
4
Servers
- Stations server certificates copied and nginx reloaded
- Forum server certificates copied and nginx reloaded
- All domains accessible with new certificates