Help Center/ Cloud Certificate & Manager/ FAQs/ About Billing, Renewal, and Unsubscription/ Can I Renew an SSL Certificate?
Updated on 2026-03-31 GMT+08:00
View PDF
Share

Can I Renew an SSL Certificate?

Yes.

An expired SSL certificate cannot enable HTTPS-encrypted communication. To avoid this, renew the certificate before it expires.

For details, see Renewing an SSL Certificate.

Restrictions

  • The manual renewal entry is available only for 30 calendar days before an SSL certificate expires.
  • Only paid SSL certificates that have been purchased in Huawei Cloud SCM and are about to expire can be renewed. Uploaded certificates, free certificates, and single-domain expansion packages cannot be renewed.
  • Manually renewing an SSL certificate is to purchase a new certificate with the exactly same configurations as the original one. The configurations include the certificate authority, certificate type, domain type, domain quantity, and primary domain name.
  • If auto-renewal is enabled for a certificate, the system automatically purchases a new certificate that has the same specifications with the original one 30 days before the original one expires and submits a certificate application using the application information of the original certificate. You still need to cooperate with the CA to complete domain name ownership and/or organization verification. The CA will not issue the certificate until they validate your domain name ownership and identity.
  • The renewal certificate and the original certificate are two independent certificates. Once the renewed certificate is issued, you need to install it on the web server or deploy it on the Huawei Cloud product the original one is deployed.
  • The new certificate validity period is the renewal validity period plus the remaining validity period of the original certificate.
    • The entry for renewing a DigiCert DV (basic) wildcard-domain certificate is available only within 15 calendar days before the certificate expires.
    • If you renew an SSL certificate on the certificate renewal page, and the certificate authority, certificate type, domain type, domain quantity, and/or primary domain name of the new certificate are different from those of the original certificate, the new certificate cannot automatically inherit the remaining validity period (if any) of the original certificate. So, the validity period of the new certificate is 200 days.