Skip to main content

Certbot: Renew, reissue, or duplicate certificate using ACME URL query parameters

When an ACME client sends a certificate automation request, CertCentral searches for existing orders and applies the default lifecycle action. It automatically renews or reissues certificates when applicable.

To perform a specific action, include the action type and order ID as query parameters in the ACME URL. For example, if your certificate profile allows duplication, you can duplicate an existing certificate by specifying these parameters in the URL. See ACME automation actions.

Base versus region-specific ACME URL

For CertCentral accounts, use the region-specific URL (See Inbound IP addresses and URLs by environment and region).

Base URL: https://one.digicert.com/mpki/api/v1/acme/v2/directory

Region-specific URLs:

EU region: https://one.nl.digicert.com orhttps://one.ch.digicert.com
Japan region: https://one.digicert.co.jp
US region: https://one.us.digicert.com

Renew certificate

This section demonstrates how to use the action=renew query parameter with the corresponding ACME URL and complete the Certbot command.

Element

Example

ACME URL Query Parameter

?action=renew&orderId=555123456

Full ACME URL

https://one.digicert.com/mpki/api/v1/acme/v2/directory?action=renew&orderId=555123456

Certbot Command Example

sudo certbot --apache ... --server https://one.digicert.com/mpki/api/v1/acme/v2/directory?action=renew&orderId=555123456 ... -d example.com -d www.example.com --preferred-challenges http

Reissue certificate

This section demonstrates how to use the action=reissue query parameter with the corresponding ACME URL and complete the Certbot command.

Element

Example

ACME URL Query Parameter

?action=renew&orderId=555123456

Full ACME URL

https://one.digicert.com/mpki/api/v1/acme/v2/directory?action=renew&orderId=555123456

Certbot Command Example

sudo certbot --apache ... --server https://one.digicert.com/mpki/api/v1/acme/v2/directory?action=renew&orderId=555123456 ... -d example.com -d www.example.com --preferred-challenges http

Duplicate certificate

This section demonstrates how to use the action=duplicate query parameter with the corresponding ACME URL and complete the Certbot command.

Element

Example

ACME URL Query Parameter

?action=renew&orderId=555123456

Full ACME URL

https://one.digicert.com/mpki/api/v1/acme/v2/directory?action=renew&orderId=555123456

Certbot Command Example

sudo certbot --apache ... --server https://one.digicert.com/mpki/api/v1/acme/v2/directory?action=renew&orderId=555123456 ... -d example.com -d www.example.com --preferred-challenges http
In this section: