We updated the statuspage here: Fly.io Status - Routing issues for newly allocated IPv6 addresses
If you’re currently having cert errors, this is the most likely reason.
Workaround worked for me too. Thanks.
A fix has been rolled out. Sorry about all of that, there are more rough edges with shared IPs than we initially thought.
2 Likes
IPv6 routing appears to still be an issue. I had to remove the AAAA DNS records for my domain to get certificates issued.
We actually won’t issue a cert at all unless there is an AAAA record. Can you give us some more details on the sequence here?
I am not 100% sure of the steps since I did not expect to run into issues 
I think the order of events was:
- I created the AAAA DNS record for the IPv6 address
- Days later, I tried to have a certificate issued
- The UI showed that verification was successful but no certs had been issued. The CLI noted that
Your certificate for <domain> is being issued. Status is Awaiting certificates. - Nothing changed for hours
- I added the CNAME for
_acme-challengeand tried deleting and recreating the certificate - It got stuck in the same way (for over 12+ hours)
- I deleted the AAAA record
- I deleted and recreated the certificate a few more times (I waited ~15 mins in-between)
- Eventually (~an hour later) the certificate was issued
Currently my domain does not have an AAAA record. Weirdly, the UI still shows that Fly thinks that I do have an AAAA record (I tried hitting Check again and nothing changes).
This one worked out for me. 
Currently experiencing this same issue. Tried different stuffs, Nothing seems to be working 