Netlify managed SSL cert not working for Netlify managed branch deploy subdomain

I use Netlify to deploy my Angular UI site. I am deploying from the Github branch “staging” and using the auto-generated Netlify sitename for the branch deploy “https://staging--appcloudtimeapp.netlify.app/” it all works fine.

However I then use the Netlify website to create a branch subdomain which Netlify names “https://staging.app.cloudtime.app” as shown in the attached screenshot:

You can also see the DNS record that Netlify creates for this:
Name: staging.app.cloudtime.app
Type: NETLIFY
Value: appcloudtimeapp.netlify.app

But clicking on the branch subdomain “https://staging.app.cloudtime.app” URL gives me the SSL error shown below.

  • we need to know your netlify site name
    appcloudtimeapp

  • DNS issues? Tell us the custom domain
    cloudtime.app, managed by Netlify

  • Tell us the error message
    NET::ERR_CERT_COMMON_NAME_INVALID
    Subject: *.netlify.com
    Issuer: DigiCert SHA2 Secure Server CA

Hey @brak,
It looks like there’s another CNAME record in your DNS record that points staging.app.cloudtime.app to azurebasics–appcloudtimeapp.netlify.app. The duplicate records are likely causing issues for issuing the SSL cert. Can you try deleting the CNAME here:
https://app.netlify.com/teams/aford22/dns/cloudtime.app#dns-records

and letting us know if that fixes things for you?

Thanks for pointing that out. I have deleted the incorrect DNS entry, flushed my local DNS cache, given it a day to replicate DNS round the world. However I am still getting the same invalid SSL error :frowning:

Hey @brak,
I believe my colleague @laura got that cert issued for you- looks correct to me in the browser! Please let us know if you run into any issues.