DigiCert Desktop Client

The DigiCert Desktop Client renewal process differs only slightly from the standard renewal process.

The standard renewal flow is followed. But for added security, the renewal request is signed and verified.

The renewal request must contain the signed_message string. This is a proof-of-possession check for a private key of a certificate to renew. Obtain the signature from phrase DDC renewal request for certificate by signing it with SHA256withRSA algorithm in PKCS1 | NONE format.

Signing a transaction that has a field and performing a sha256 signature with the private key.