Where do I find SSL CA Bundle?

Note: Namecheap is offering free replacement of your current Symantec certificate to its Comodo (now Sectigo) equivalent. Addressing the market needs and keeping our hand on pulse, we want to protect our customers. We are always here to clarify any SSL-related points and provide assistance on the way. 

You don't need to pull out your hair anymore in an attempt to compile a correct CA Bundle for your certificate! We already did that for you.

If you have your certificate in the PKCS#7 format (appropriate mostly for IIS/Microsoft Exchange), you already have your bundle included into your certificate and do not need to install it separately.

In order to save the file it is necessary to right-click on it and use the 'save as' option. Otherwise, your browser may try to install it.

Keep in mind that Sectigo (former Comodo) CA currently has several versions of the "USERTrust RSA Certification Authority" SHA-2 root certificate.

The up-to-date version is not cross-signed by any other certificate and is a self-signed SHA2 root certificate in fact. Another valid version is cross-signed by the AAA Root certificate.

The third one is now outdated and it is cross-signed by the expired SHA1 "AddTrust External CA Root".


      New Sectigo Bundles under SHA2 Root certificates (not cross-signed):

Sectigo RSA Domain Validation under SHA-2 root (valid for PositiveSSL, EssentialSSL, PositiveSSL Multi-Domain, PositiveSSL Wildcard and EssentialSSL Wildcard certificates)
contains:

Sectigo RSA Organization Validation under SHA-2 root (valid for InstantSSL, InstantSSL Pro, PremiumSSL, Multi-Domain SSL, Unified Communications and PremiumSSL Wildcard certificates)
contains:


Sectigo RSA Extended Validation under SHA-2 root (valid for EV SSL and EV Multi-Domain SSL certificates)
contains:

Sectigo ECC Domain Validation under SHA-2 root (valid for PositiveSSL, EssentialSSL, PositiveSSL Multi-Domain, PositiveSSL Wildcard and EssentialSSL Wildcard certificates)
contains:

Sectigo ECC Organization Validation under SHA-2 root (valid for InstantSSL, InstantSSL Pro, PremiumSSL, Multi-Domain SSL, Unified Communications and PremiumSSL Wildcard certificates)
contains:

Sectigo ECC Extended Validation under SHA-2 root (valid for EV SSL and EV Multi-Domain SSL certificates)
contains:


New Sectigo SHA2 Bundles under AAA Root

RSA DV Bundle under AAA Root (valid for PositiveSSL, EssentialSSL, PositiveSSL Multi-Domain, PositiveSSL Wildcard and EssentialSSL Wildcard certificates)
contains:

RSA OV Bundle under AAA Root (valid for InstantSSL, InstantSSL Pro, PremiumSSL, Multi-Domain SSL, Unified Communications and PremiumSSL Wildcard certificates)
contains:

RSA EV Bundle under AAA Root (valid for EV SSL and EV Multi-Domain SSL certificates)
contains:

ECC DV Bundle under AAA Root (valid for PositiveSSL, EssentialSSL, PositiveSSL Multi-Domain, PositiveSSL Wildcard and EssentialSSL Wildcard certificates)
contains:

ECC OV Bundle under AAA Root (valid for InstantSSL, InstantSSL Pro, PremiumSSL, Multi-Domain SSL, Unified Communications and PremiumSSL Wildcard certificates)
contains:

ECC EV Bundle under AAA Root (valid for EV SSL and EV Multi-Domain SSL certificates)
contains:


    Legacy Bundles

         Comodo SHA2 Bundles under SHA2 Root

    Comodo Domain Validated SHA-2 under SHA-2 root
    Comodo Organization Validation SHA-2 under SHA-2 root
    Comodo Extended Validation SHA-2 under SHA-2 root
    Comodo ECC Domain Validation
    Comodo ECC Organization Validation
    Comodo ECC Extended Validation


    Expired Bundles

         Comodo SHA2 Bundles under the SHA1 Root

    PositiveSSL/EssentialSSL SHA-2 (also applicable for PositiveSSL/EssentialSSL Wildcard and PositiveSSL Multi-domain)
    InstantSSL/PremiumSSL/InstantSSL Pro SHA-2 (also applicable for PremiumSSL Wildcard, UCC and Multi-Domain SSL)
    Comodo EVSSL/EV SGC SSL/EV Multi-Domain SSL SHA-2


         Sectigo CA Bundles cross-signed by SHA1 Root

    Note: These Bundles were valid till May 30, 2020, visit here for the details. 

    Sectigo RSA DV Bundle [ Intermediate + Cross Signed ] (valid for PositiveSSL, EssentialSSL, PositiveSSL Multi-Domain, PositiveSSL Wildcard and EssentialSSL Wildcard certificates)
    contains:

    Sectigo RSA OV Bundle [ Intermediate + Cross Signed ] (valid for InstantSSL, InstantSSL Pro, PremiumSSL, Multi-Domain SSL, Unified Communications and PremiumSSL Wildcard certificates)
    contains:


    Sectigo RSA EV Bundle [ Intermediate + Cross Signed ] (valid for EV SSL and EV Multi-Domain SSL certificates)
    contains:

    Sectigo ECC DV Bundle [ Intermediate + Cross Signed ] (valid for PositiveSSL, EssentialSSL, PositiveSSL Multi-Domain, PositiveSSL Wildcard and EssentialSSL Wildcard certificates)
    contains:

    Sectigo ECC OV Bundle [ Intermediate + Cross Signed ] (valid for InstantSSL, InstantSSL Pro, PremiumSSL, Multi-Domain SSL, Unified Communications and PremiumSSL Wildcard certificates)
    contains:

    Sectigo ECC EV Bundle [ Intermediate + Cross Signed ] (valid for EV SSL and EV Multi-Domain SSL certificates)
    contains:

    Updated
    9/11/2020

    Viewed
    121999 times

    Comments

    We welcome your comments, questions, corrections and additional information relating to this article. Your comments may take some time to appear. Please be aware that off-topic comments will be deleted.

    If you need specific help with your account, feel free to contact our Support Team. Thank you.

    Need help? We're always here for you.

    × Close