diff --git a/apps/michaelthomson/ingress.yaml b/apps/michaelthomson/ingress.yaml
index 780541b..1bfeb5f 100644
--- a/apps/michaelthomson/ingress.yaml
+++ b/apps/michaelthomson/ingress.yaml
@@ -4,6 +4,7 @@ metadata:
   name: michaelthomson.dev
   namespace: michaelthomson
   annotations:
+    cert-manager.io/cluster-issuer: "letsencrypt-prod"
     external-dns.alpha.kubernetes.io/target: michaelthomson.ddns.net
     external-dns.alpha.kubernetes.io/cloudflare-proxied: "true"
     traefik.ingress.kubernetes.io/router.entrypoints: websecure
@@ -23,4 +24,4 @@ spec:
   tls:
     - hosts:
         - michaelthomson.dev
-      secretName: letsencrypt-wildcard-cert-michaelthomson.dev
+      secretName: michaelthomson-tls
diff --git a/infrastructure/configs/cert-manager/certificate-wildcard-cert-letsencrypt-prod.yaml b/infrastructure/configs/cert-manager/certificate-wildcard-cert-letsencrypt-prod.yaml
deleted file mode 100644
index 6c856c9..0000000
--- a/infrastructure/configs/cert-manager/certificate-wildcard-cert-letsencrypt-prod.yaml
+++ /dev/null
@@ -1,20 +0,0 @@
-apiVersion: cert-manager.io/v1
-kind: Certificate
-metadata:
-  name: letsencrypt-wildcard-cert-michaelthomson.dev
-  namespace: letsencrypt-wildcard-cert
-spec:
-  # secretName doesn't have to match the certificate name, but it may as well, for simplicity!
-  secretName: letsencrypt-wildcard-cert-michaelthomson.dev
-  secretTemplate:
-    annotations:
-      reflector.v1.k8s.emberstack.com/reflection-allowed: "true"
-      reflector.v1.k8s.emberstack.com/reflection-allowed-namespaces: ""
-      reflector.v1.k8s.emberstack.com/reflection-auto-enabled: "true"
-      reflector.v1.k8s.emberstack.com/reflection-auto-namespaces: ""
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
-  dnsNames:
-    - "michaelthomson.dev"
-    - "*.michaelthomson.dev"
diff --git a/infrastructure/namespaces/namespace-letsencrypt.yaml b/infrastructure/namespaces/namespace-letsencrypt.yaml
deleted file mode 100644
index c402246..0000000
--- a/infrastructure/namespaces/namespace-letsencrypt.yaml
+++ /dev/null
@@ -1,4 +0,0 @@
-apiVersion: v1
-kind: Namespace
-metadata:
-  name: letsencrypt-wildcard-cert