The default validity period of a certificate issued by the certificate authority (CA) is one year. To continue to use your certificate, you must renew the certificate within 30 natural days before it expires. SSL Certificates Service allows you to manually renew an existing certificate by purchasing a certificate.
To renew an existing certificate, you can manually purchase a certificate that is exactly the same as the existing certificate within 30 natural days before the existing certificate expires. You can purchase a certificate on the Renewal Purchase page in the SSL Certificates Service console console. The renewed certificate is the same as the existing certificate in terms of the domain name type, certificate type, certificate brand, and certificate grade. You can use the application information of the existing certificate to apply to the CA for certificate renewal. After the CA approves the certificate renewal application, you will obtain a newly issued certificate, which is the renewed certificate.
After you obtain the renewed certificate, you must manually install it to the web server or Alibaba Cloud service to replace the existing certificate before the existing certificate expires.
For more information about how to renew an existing certificate by purchasing a certificate, see Manual renewal.