I ended up vibe an ACME client for my custom TLS server.

It's a chat server but with curl. You can try it here

curl -NT. https://chat.est.im/hackernews

(Note: IPv6 only for the moment)

> don't expect it to automatically set up your webserver to use the certificates it obtains.

This makes me so happy. Acme and certbot trying to do this is annoying, Caddy trying to get certs by default is annoying. I ended up on a mix of dehydrated and Apache mod_md but I think I like the look of uACME because dehydrated just feels clunky

Neat, I've used lego (https://github.com/go-acme/lego) but will certainly have to give uacme a look, love me a simple ACME client.

acme.sh was too garish for my liking, even as a guy that likes his fair share of shell scripts. And obviously certbot is a non-starter because of snap.