Certificate Management Service uses the subscription billing model. Charges vary by service — certificate management, hosting, and deployment are each billed separately.
For exact pricing, see the purchase page.
Certificate validity period
Validity periods vary by issuance date and certificate brand. For details, see Validity period changes. To minimize business impact from expiring certificates, Alibaba Cloud sends renewal reminders and provides renewal services.
Manage expiring certificates
When a certificate expires, browsers display security warnings, visitors can no longer establish encrypted connections, and your website's search ranking may be affected. Renew before expiration to prevent downtime.
Impact of expired certificates
An expired certificate causes the following:
Users cannot access your website.
Browsers display security warnings on your site.
Communication between visitors and your website is no longer encrypted.
Your website's search ranking may be affected.
Renew before expiration
Steps differ based on certificate type.
| Certificate type | Steps |
|---|---|
| Commercial certificate | Purchase a new certificate at least 15 days before expiration. Submit an application, complete issuance, and install the new certificate. See Renew SSL certificates, Apply for a certificate, and Deploy SSL certificates. |
| Third-party certificate | Purchase a new certificate from the third-party provider, then upload it to Certificate Management Service using Upload Certificate. See Upload, sync, and share SSL certificates. |
Expired certificate data handling
Alibaba Cloud automatically deletes certificates that have been expired for more than one year. Deleted certificates cannot be recovered.