Default certificate is not working for our Traefik

Hello Team,

We are using Traefik for redirection for over 3000 websites.

We are using global accelerator and NLB that points to ECS fargate where traeffik image is used with following configurations

"command": ["--api.insecure=true","--log","--log.level=DEBUG",
"--entrypoints.web.address=:80",
"--entrypoints.web.transport.respondingtimeouts.idletimeout=20",
"--entrypoints.web.transport.respondingtimeouts.readtimeout=20",
"--entrypoints.web.transport.respondingtimeouts.writetimeout=20",
"--entrypoints.websecure.address=:443",
"--entrypoints.websecure.http.tls.certResolver=lestandard",
"--entrypoints.websecure.transport.respondingtimeouts.idletimeout=20",
"--entrypoints.websecure.transport.respondingtimeouts.readtimeout=20",
"--entrypoints.websecure.transport.respondingtimeouts.writetimeout=20",
"--certificatesresolvers.lestandard.acme.email=testmail@gmail.com",
"--certificatesresolvers.lestandard.acme.httpchallenge=true",
"--certificatesresolvers.lestandard.acme.httpchallenge.entrypoint=web",
"--certificatesresolvers.lestandard.acme.storage=/mount/efs-certs/acme.json",
"--providers.providersThrottleDuration=10s",
"--providers.redis.endpoints=new-dev-redirector-rulestore-001.new-dev-redirector-rulestore.v2rtcm.euc1.cache.amazonaws.com:6379",
"--providers.redis.tls.insecureSkipVerify=true",
"--providers.file.directory=/mount/efs-certs"]

The certificate is generating using letsencrypt and are generating correctly for all these 3000.

But if we check, we can see Traefik default certificate is generating each day and not valid. We have to use custom default valid certificate. So as per documentation we have updated the configuration

-providers.file.directory=/mount/efs-certs and create yml file and added following values.

ls:
  options:
    default:
      sniStrict: true
  certificates:
    - certFile: traefik-ca.cert
      keyFile: traefik-ca.key
  stores:
    default:
      defaultCertificate:
        certFile: traefik-ca.cert
        keyFile: traefik-ca.key

But still we cant see default certificate is generating each day and not taking our custom certificate.

Anyone have any insight on this ?