When you are considering support basic HTTPS blog, you may choose Certbot to perform a self-assign certificate, according to the Offical Tutorial.
After installed the tool, you may check whether
/etc/cron.d/certbot was configured, if not, you may add it by performing command line:
sudo certbot renew --dry-run
Or add it manually into the corresponding file: