Never ran certbot manually no. I had to amend ssl_certificates.py and added --manual-public-ip-logging-ok then ran ./ssl_certificates.py and it generated the certificates. Found here:
https://discourse.mailinabox.email/t/weird-ssl-renewal-problem/6347