Reissue SSL Certificate

SSL Certificates can be reissued when needed, allowing customers to obtain a new SSL Certificate without submitting a new order.

Reissuing is useful when any part of the SSL Certificate has been lost, server configuration has changed, or when you need to claim remaining validity from a multi-year subscription.

Trustico® makes the reissue process simple and efficient through the tracking system, ensuring customers and partners can quickly generate a new SSL Certificate when required.

Why Reissue an SSL Certificate

There are several common reasons why you might need to reissue your SSL Certificate. Understanding when reissuing is appropriate helps ensure your website maintains continuous protection.

Claiming Remaining Subscription Validity

Due to industry regulations, SSL Certificates have a maximum validity period of approximately 398 days.

If you purchased a multi-year SSL Certificate subscription, your initial SSL Certificate was issued for this maximum period, with the remaining validity held in your subscription balance.

Reissuing allows you to claim this remaining validity and obtain a fresh SSL Certificate covering the next portion of your subscription. Learn About SSL Certificate Maximum Validity Periods 🔗

Lost or Compromised Private Key

If you have lost access to your Private Key or believe it may have been compromised, you should reissue your SSL Certificate immediately.

The reissue process generates a new SSL Certificate bound to a new Private Key, ensuring your website security is restored. Learn About Private Key Security 🔗

Server Changes or Migration

When migrating to a new server or making significant changes to your server configuration, you may need to generate a new Certificate Signing Request (CSR) with a new Private Key. Reissuing your SSL Certificate ensures it works correctly with your updated server environment.

How Validity Works When Reissuing

Reissuing your SSL Certificate does not forfeit any unused validity from your current SSL Certificate. Your subscription tracks the total coverage period you purchased, and each reissue draws from this balance.

When you reissue, your new SSL Certificate receives the maximum available validity, up to the 398-day limit. If your remaining subscription balance exceeds 398 days, you will receive an SSL Certificate valid for 398 days and can reissue again in the future to claim the remaining validity.

If your remaining balance is less than 398 days, your reissued SSL Certificate will be valid for the remaining balance.

For example, a customer with a two-year subscription receives an initial SSL Certificate valid for 398 days. When they reissue before that SSL Certificate expires, the new SSL Certificate receives the remaining validity of approximately 332 days, covering the rest of their subscription period.

How to Reissue Your SSL Certificate

Reissuing your SSL Certificate is straightforward using the Trustico® tracking system. You will need your Certificate Authority (CA) Reference number, which was provided when your SSL Certificate was originally issued and is available in your order confirmation e-mail and customer account.

Step 1 : Access the Tracking System

Visit the Trustico® tracking system and enter your Certificate Authority (CA) Reference number. The tracking system displays your current SSL Certificate status, subscription details and available validity remaining. Learn About The Trustico® Tracking System 🔗

Step 2 : Initiate the Reissue

Select the option to reissue your SSL Certificate. You will be prompted to provide a new Certificate Signing Request (CSR), or you can use the AutoCSR service if available for your SSL Certificate type. The system displays the maximum validity available for your reissued SSL Certificate based on your subscription balance. Learn About Certificate Signing Requests (CSR) 🔗

Step 3 : Complete Validation

Reissued SSL Certificates occasionally require validation. For Domain Validation (DV) SSL Certificates, this typically involves responding to a validation e-mail or completing file-based or DNS-based validation. Organization Validation (OV) and Extended Validation (EV) SSL Certificates may require the Certificate Authority (CA) to reverify organization details if significant time has passed since original validation. Learn About SSL Certificate Validation 🔗

Step 4 : Install Your New SSL Certificate

Once validation is complete, your reissued SSL Certificate is available for download from the tracking system. Install the new SSL Certificate on your server, replacing the previous one. Remember to install current Intermediate Certificates to ensure proper chain validation. Learn About SSL Certificate Installation 🔗

Reissue as Often as Needed

There is no limit to how many times you can reissue your SSL Certificate during your subscription period, and there is no additional cost for reissuing. Whether you need to reissue once per year to claim validity or multiple times due to infrastructure changes, all reissues are included in your subscription.

Partner Access to Reissue Management

Trustico® partners have full access to the tracking system, allowing them to manage reissue requests efficiently for their customers. Partners can monitor SSL Certificate expiry dates, initiate reissues and ensure their customers maintain uninterrupted protection. Learn About The Trustico® Partner Program 🔗