For standalone deployments, you can just replace the server.crt and server.key files and restart LXD.
For cluster deployments, you can use lxc cluster update-certificate to replace the cluster certificate on the entire cluster (you should never directly touch server.crt and server.key in a clustered deployment).