This is simply a question regarding security for not only the cloudbit image, but any seedbox image I suppose.
If the image is pre-existing, wouldn’t all the SSL certificates have the same private key? Maybe that’s not such a big deal, but I’m just curious 
You should generate new SSL keys via SSH
CD to an accesible location on your VM and run this command, the CSR can be used to request a new SSL cert.
openssl req -new -newkey rsa:2048 -nodes -keyout server.key -out server.csr
No SSL keys have been installed on the image but if you are unsure please generate a new one.
Regards