diff --git a/README.md b/README.md
index 2a63631..86b4ec2 100644
--- a/README.md
+++ b/README.md
@@ -31,6 +31,14 @@ But first, Issuers and ClusterIssuers are Kubernetes resources that represent ce
 
 Let's say you need a certificate for `radarr.sthome.net` (should be registered in sthome DNS).
 
+First, create a base64 CA bundle:
+Obtain CA bundle in .pem format, then execute the following on shell command line:
+```bash
+cat /path/to/pem/file/ca.pem | sed -e ':a' -e 'N' -e '$!ba' -e 's/\n//g' | base64 -w0
+```
+
+Replace `<cabundle>` in .yaml examples below with generated base64 line
+
 Create a cert-manager `Issuer`. Create a `sthome-issuer.yaml` file with the following content:
 ```yaml
 apiVersion: cert-manager.io/v1
@@ -41,9 +49,14 @@ spec:
   acme:
     email: my-user@sthome.net
     # acme URL
-    server: https://upd.sthome.lan/acme-v02.api
-    #privateKeySecretRef:
-    #  name: sthome-private-key-secret
+    server: https://upd.sthome.net/acme-v02.api
+    
+    # Name of a secret used to store the ACME account private key
+    privateKeySecretRef:
+      name: sthome-private-key-secret
+    
+    # Private ca's cert bundle in base64
+	  caBundle: <cabundle>
     solvers:
     - dns01:
         webhook:
@@ -82,8 +95,11 @@ spec:
     email: my-user@sthome.net
 
     # Name of a secret used to store the ACME account private key
-    #privateKeySecretRef:
-    #  name: sthome-acme
+    privateKeySecretRef:
+      name: sthome-acme
+
+    # Private ca's cert bundle in base64
+	  caBundle: <cabundle>
 
     solvers:
       - dns01: