diff --git a/k8s/applications/cert-manager.yaml b/k8s/applications/cert-manager.yaml
new file mode 100644
index 0000000..d515ac6
--- /dev/null
+++ b/k8s/applications/cert-manager.yaml
@@ -0,0 +1,15 @@
+apiVersion: argoproj.io/v1alpha1
+kind: Application
+metadata:
+  name: cert-manager
+  namespace: argocd
+spec:
+  destination:
+    name: ''
+    namespace: cert-manager
+    server: 'https://kubernetes.default.svc'
+  source:
+    path: k8s/cert-manager
+    repoURL: 'git@bitbucket.org:jamkazam/video-iac.git'
+    targetRevision: HEAD
+  project: default
diff --git a/k8s/cert-manager/cluster-issuer-production.yaml b/k8s/cert-manager/cluster-issuer-production.yaml
new file mode 100644
index 0000000..49f83e7
--- /dev/null
+++ b/k8s/cert-manager/cluster-issuer-production.yaml
@@ -0,0 +1,20 @@
+apiVersion: cert-manager.io/v1
+kind: ClusterIssuer
+metadata:
+  name: letsencrypt-production
+spec:
+  acme:
+    # You must replace this email address with your own.
+    # Let's Encrypt will use this to contact you about expiring
+    # certificates, and issues related to your account.
+    email: victor.barba.martin@toptal.com
+    server: https://acme-v02.api.letsencrypt.org/directory
+    privateKeySecretRef:
+      # Secret resource that will be used to store the account's private key.
+      name: issuer-account-key
+    # Add a single challenge solver, HTTP01 using nginx
+    solvers:
+    - http01:
+        ingress:
+          class: nginx
+