Hello @ocrmtinamu
One of Traefik's features is TLS termination so there is no need for extracting issued certificates from acme.json. Traefik will present a certificate that has been issued from Let's Encrypt for you configured domain in the rule section. The registry should be presented via HTTP and TLS termination is happening between client and Traefik.
Client -- HTTPS--> Traefik -- HTTP--> registry
Seems you just need to remove those environment variables:
- REGISTRY_HTTP_TLS_CERTIFICATE=/cert/certificate.crt
- REGISTRY_HTTP_TLS_KEY=/cert/privatekey.key
and let Traefik do the rest of the job in regards to TLS.
What do you think?