SSL certificate error: The provider encountered an error verifying the DNS settings of your domain name. Please double check your nameserver settings and try again later.
Error detail: The TXT record retrieved from _acme-challenge.929394.xyz. at the time the challenge was validated did not contain AfzbAoqm06Sa8x_FAKAauFZobihCsqi00QxeZLteK4k (the base64url-encoded SHA-256 digest of BYA8bncRMcviwwQm_jU5EUqldFPDHlEbJX3NSyo7CmWybWqQyRmWKCKAhSoBFt2r.E6HbDmOkq6_oFFWvjHS0Hd--ZWFX3c1n_U6Xy99c1XU). See https://tools.ietf.org/html/rfc8555#section-8.4 for more information.
This is fine, but that does mean you have to add the DNS records that the SSL creation tool wants manually.
However, since you’re using Cloudflare you might not even have to install an SSL certificate on your site directly. When I go to your site it’s already using HTTPS, probably because you have the default of Cloudflare’s flexible SSL enabled. But if that doesn’t work for you for whatever reason, you can switch to using Cloudflare’s SSL mode to full. All custom domains on InfinityFree automatically have a self-signed SSL certificate installed now, so all you have to do is change the SSL mode in Cloudflare’s settings.
Full (Strict) indeed requires that you have a trusted SSL certificate installed, but it’s much easier to use the regular Full mode, especially since InfinityFree already provides you with a self-signed certificate.
That being said, what about the error message from the SSL tool? What provider is having the issue, and does it still happen if you try a different one?
The issue you’re experiencing is a known issue when using Cloudflare.
Basically, even if you have the CNAME record configured in Cloudflare’s settings, Cloudflare doesn’t respond correctly to the DNS lookups for the validation records.
This happens because Cloudflare also needs to request SSL certificates for your domain name so they can secure the connection between your visitors and Cloudflare. These records take precedence over the CNAME record you have configured for us, and which prevent our system from requesting SSL certificates for you.
To the best of my knowledge, all you can do is wait for a few days for Cloudflare to finish everything up on their end so they will remove their records and let your own records go through.
The only thing we could do is improve the feedback in our panel. Because there is no way we can request certificates for you if your DNS provider is blocking the required queries.
In the mean time, you can use Full SSL (not strict) instead.
