Generating A CRT For SSL Certificate Renewals

Following on from my post at you can also generate a new CSR (Certificate Signing Request) without having to fill out all of the company details all over again.

To do this you will require the existing certificate (.crt file) and key (.key file), if the certificate is correctly installed on your server then you should be able to find the location of these from your Apache configuration file.

Once you have those you can run the following command to generate a brand new CSR, for your certificate renewal.

openssl x509 -x509toreq -in existing-certificate-name.crt -out signing-request.csr -signkey existing-key-name.key

This will then give you a file outputed of signing-request.csr which you can use to purchase your certificate from your preferred SSL vendor.

This entry was posted in Managed Hosting. Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *


You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>