ISPmanager & домен https

Здравствуйте, решил подключить Яндекс кассу, а та требует checkURL обязательно по https:madd:

Имею:

выделенный сервер c ISPmanager на Debian, свободный IP, apache+nginx

Создал в панели поддомен как отдельный сайт на отдельном IP, нажал на галку SSL:

Создал соответствующие ns записи и поддомен стал доступен по http и по ip на 80 и на 443 портах

По https браузер показывает:

Конфиг nginx:

	server {

		server_name payments.mysite.com;

		listen 95.313.140.13;

		listen 95.313.140.13:443;

		charset UTF-8;

		set $root_path /var/www/mysite.com/data/www/payments.mysite.com;

		location ~* ^.+\.(jpg|jpeg|gif|png|svg|js|css|mp3|ogg|mpe?g|avi|zip|gz|bz2?|rar|swf)$ {

			root $root_path;

			access_log /var/www/nginx-logs/mysite.com isp;

			access_log /var/www/httpd-logs/payments.mysite.com.access.log ;

			error_page 404 = @fallback;

		}

		location / {

			proxy_pass http://95.313.140.13:81;

			proxy_redirect http://95.313.140.13:81/ /;

			proxy_set_header Host $host;

			proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

			proxy_set_header X-Forwarded-Proto $scheme;

			proxy_set_header X-Real-IP $remote_addr;

		}

		location ~* ^/(webstat|awstats|webmail|myadmin|pgadmin)/ {

			proxy_pass http://95.313.140.13:81;

			proxy_redirect http://95.313.140.13:81/ /;

			proxy_set_header Host $host;

			proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

			proxy_set_header X-Forwarded-Proto $scheme;

			proxy_set_header X-Real-IP $remote_addr;

		}

		location @fallback {

			proxy_pass http://95.313.140.13:81;

			proxy_set_header Host $host;

			proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

			proxy_set_header X-Forwarded-Proto $scheme;

			proxy_set_header X-Real-IP $remote_addr;

		}

		location ^~ /webstat/ {

			auth_basic "Restricted area";

			auth_basic_user_file /var/www/mysite.com/data/etc/8395261.passwd;

			try_files $uri @fallback;

		}

		include /usr/local/ispmgr/etc/nginx.inc;

		ssl_certificate /var/www/httpd-cert/mysite.com/payments.mysite.com.crt;

		ssl_certificate_key /var/www/httpd-cert/mysite.com/payments.mysite.com.key;

	}

Apache:

<Directory /var/www/mysite.com/data/www/payments.mysite.com>

	Options -ExecCGI -Includes

	php_admin_value open_basedir "/var/www/mysite.com/data:."

	php_admin_flag engine on

</Directory>



<VirtualHost 95.313.140.13:81 >

	ServerName payments.mysite.com

	AddDefaultCharset UTF-8

	CustomLog /var/www/httpd-logs/payments.mysite.com.access.log combined

	DocumentRoot /var/www/mysite.com/data/www/payments.mysite.com

	ErrorLog /var/www/httpd-logs/payments.mysite.com.error.log

	ServerAdmin support@mysite.com

	SuexecUserGroup mysite.com mysite.com

	AddType application/x-httpd-php .php .php3 .php4 .php5 .phtml

	AddType application/x-httpd-php-source .phps

	php_admin_value open_basedir "/var/www/mysite.com/data:."

	php_admin_value sendmail_path "/usr/sbin/sendmail -t -i -f support@mysite.com"

	php_admin_value upload_tmp_dir "/var/www/mysite.com/data/mod-tmp"

	php_admin_value session.save_path "/var/www/mysite.com/data/mod-tmp"

</VirtualHost>

Подскажите, что я делаю не так?