According to draft 16, we can imagine to reliably find the certificate in the chain (it MUST be the first one).

Maybe we could add some optional paths in the config to redirect Certificate and Chain in 2 different files ?

Note with ACME-draft-16, we have this:

In order to provide easy interoperation with TLS, the first certificate MUST be an end-entity certificate. Each following certificate SHOULD directly certify the one preceding it. Because certificate validation requires that trust anchors be distributed independently, a certificate that represents a trust anchor MAY be omitted from the chain, provided that supported peers are known to possess any omitted certificates.