On 2025-08-18 11:35 UTC, Job Snijders <job@openbsd.org> wrote:
> Hello,
>
> Sad news, it seems buypass is pulling the plug on their DV certification
> service, see this announcement:
> https://community.buypass.com/t/y4y130p/buypass-terminates-issuance-of-gossl-certificates
>
> Other free CAs (such as ZeroSSL) require support for EAB (specified in
> RFC 8555 section 7.3.4), which acme-client(1) doesn't yet support. So
> for now I see no other option than just to remove the buypass example.
>
> OK?
>
> Kind regards,
>
> Job
>
> Index: etc/examples/acme-client.conf
> ===================================================================
> RCS file: /cvs/src/etc/examples/acme-client.conf,v
> diff -u -p -r1.5 acme-client.conf
> --- etc/examples/acme-client.conf	10 May 2023 07:34:57 -0000	1.5
> +++ etc/examples/acme-client.conf	18 Aug 2025 11:33:05 -0000
> @@ -1,6 +1,7 @@
>  #
>  # $OpenBSD: acme-client.conf,v 1.5 2023/05/10 07:34:57 tb Exp $
>  #
> +

this seems unrelated, other than that, OK florian

>  authority letsencrypt {
>  	api url "https://acme-v02.api.letsencrypt.org/directory"
>  	account key "/etc/acme/letsencrypt-privkey.pem"
> @@ -9,18 +10,6 @@ authority letsencrypt {
>  authority letsencrypt-staging {
>  	api url "https://acme-staging-v02.api.letsencrypt.org/directory"
>  	account key "/etc/acme/letsencrypt-staging-privkey.pem"
> -}
> -
> -authority buypass {
> -	api url "https://api.buypass.com/acme/directory"
> -	account key "/etc/acme/buypass-privkey.pem"
> -	contact "mailto:me@example.com"
> -}
> -
> -authority buypass-test {
> -	api url "https://api.test4.buypass.no/acme/directory"
> -	account key "/etc/acme/buypass-test-privkey.pem"
> -	contact "mailto:me@example.com"
>  }
>  
>  domain example.com {
>

-- 
In my defence, I have been left unsupervised.