A better way to add more domains to a Gemini capsule's certificate

In response to my quick post about replacing the certificate on this Gemini capsule, sbr mailed me that I could have just kept the same private key and generated a new certificate with the same key, which avoids the surprise for people who have the certificate cached in their Gemini browsers already. The browser will not be alarmed if the new certificate with the added domains uses the same private key as the previous certificate.

They describe their process on their gemlog:

I will start doing this going forward. For now, I will keep the new key though, instead of going back to the original key. But whenever in the future I'll be adding more domains (and I will be), I'll be re-using the key. Thanks sbr!