A brief explanation regarding the recent revocation event that occurred on Friday, April 3, 2026.
An issue was identified in a vendor-provided component used by our ACME validation process, resulting in a deviation from the CA/Browser Forum (CABF) compliance requirements. The deviation affected the manner in which domain validation was performed using Multi-Perspective Issuance Corroboration (MPIC).
While domain validation checks were successfully completed and matched as expected, the manner in which validation was performed did not fully align with CABF policy requirements.
This incident does not reflect a security issue. There is no indication of compromise or incorrect validation. This is a policy compliance matter under the CABF Baseline Requirements.
As a result, and in accordance with industry compliance requirements, including the CABF Baseline Requirements and browser root store programs, we were required to revoke and reissue the affected certificates. This action ensured continued industry compliance and SSL.com’s commitment to maintaining the integrity of the WebPKI trust ecosystem.
This issue is limited to certificates issued through ACME, and affected certificates can be reissued immediately with no additional steps required.
We will continue to provide updates, and a final report with additional updates can be found here.
Please let us know if you have any questions or need assistance with reissuance. Contact our support team or chat with us in the lower-right corner of this page.
