If the brand of your current SSL is DigiCert / GeoTrust / Thawte / RapidSSL / Sectigo / GlobalSign, you can renew your SSL Certificate via Nethub. Otherwise, we can offer another trusted SSL Certificate with similar features as a replacement.
Please note that if your current SSL Certificate was not purchased via Nethub before, it will be a new validity period, which means it will not inherit the old validity period of your current SSL Certificate. The start date of SSL Certificate will be the issue date of new SSL Certificate.
The maximum length for the Organization (O) name in the CSR is 64 characters. If the name exceeds this limit, it is recommended to include as much of the organization's name as possible and consider using abbreviations if necessary.
Starting from 2026-02-24, all SSL/TLS brands around the world will adjust the maximum validity of SSL/TLS Certificates to 199 days in order to comply with industry-wide requirement.
As a result, the maximum validity of SSL/TLS Certificate will be only 199 days.
For 1-5 years SSL Certificate, in order to ensure the most up-to-date security that meets the CA/B Forum standards, your SSL certificate will initially be issued with 199 days validity. Once your initial certificate enters the renewal phase (1 month prior to the certificate expiry date), we will inform you to renew the SSL Certificate. At that time, you will need to complete the domain validation / organization validation again and re-issue the SSL Certificate with another 199 days. And you will need to install it again on your server.
Yes, the SSL certificates we provided come with an unlimited server license, allowing you to install the same SSL certificate on an unlimited number of servers (excluding Hongkong Post e-Cert).
Yes, you may reissue the SSL certificate free of charge throughout the lifetime of the certificate (excluding Hongkong Post e-Cert).
Multi-Domain SSL Certificate has originally included a Common Name and specific number of Subject Alternative Names (SAN). If you would like to add more SAN into Multi-Domain SSL Certificate when you submit the SSL order, please kindly contact us and provide the total numbers of SAN for quotation.
After Multi-Domain SSL Certificate is issued, if you would like to add more SAN into certificate during validity period, you will need to pay the charge of additional SAN (we will quote the price according to the numbers of additional SAN), and then the certificate will be reissued and you will need to install it again.
Yes. Please note that the IP address must be a fixed public IP address. Private IP addresses (e.g. 192.168.x.x) cannot be used to apply for an SSL certificate.
Wildcard SSL Certificate can secure all subdomains at same level. You can refer to below examples for more details.
Example 1
Common Name of Wildcard SSL Certificate: *.domain.com
In this case, www.domain.com, mail.domain.com and shop.domain.com are subdomains at same level.
But www.shop.domain.com and example.mail.domain.com are not at same level as above subdomains, which means these 2 subdomains would not be secured in Wildcard SSL Certificate of *.domain.com.
Example 2
Common Name of Wildcard SSL Certificate: *.example.domain.com
In this case, www.example.domain.com, mail.example.domain.com, shop.example.domain.com are subdomains at same level.
But www.domain.com and shop.domain.com are not at same level as above subdomains, which means these 2 subdomains would not be secured in Wildcard SSL Certificate of *.example.domain.com.
