SSL/TLS certificates

Do you have questions about our SSL/TLS certificates? We will be pleased to assist you. You can find information in our FAQs section or you can contact our support team directly.

Root and issuer certificates

Our SSL certificates are issued on the basis of two different certificate chains, depending on the product focus:

1. Advanced SSL, Wild Card SSL, Communication SSL

2. Advanced EV SSL

FAQs – Frequently Asked Questions

In order to create a Certificate Signing Request (CSR), please have the following information at the ready:

  • Common Name (CN) − Fully Qualified Domain Name (FQDN) of the website to be secured
  • Organisation Name (O) − applicant (i.e. the organisation that wishes to identify both itself and its web server in future)
  • Locality (L) − city (applicant's official place of business)
    State (S) − federal state/canton (applicant's official place of business as recorded in the commercial register (HRA/HRB)
  • Country (C) − e.g. DE for Germany (applicants's official place of business)

Note: It is essential that you archive your CSR file and your private key after you have created them.


Use the ‘Go to order‘ link to select your product. The ‘Apply’ link provided there will redirect you to the D-TRUST website.

You will be required in the online application to enter not just the CSR file but also certain information regarding the web servers to be equipped, the applicant and the contact person. When you send your application to D-TRUST, we will check your information and contact you if we require any additional details.

Once D-TRUST has approved the application, we will send you the certificate by e-mail or we will provide you with a link that you can use to download it. All you need to do now is to install the certificate on your web server.

Note: Our certificates are compatible with all customary platforms that support today's hash algorithms. If you should have questions related to creating a CSR or certificate requests, please refer to the comprehensive and specific documentation provided by the manufacturer of your hardware and software.

If you should experience problems during installation, this may be due to the following reasons:

  • Between the time the request was generated and the time the certificate was installed, the certificate request and/or private key was deleted or carried out on a different computer.

  • The certificate chain is incomplete on the web server. Please check whether the root certificate (as the root certification authority) and the issuing intermediate certificate (as the intermediate certification authority and/or chain-CA or sub-CA) exist. If one of these certificates does not exist, it will not be possible to import the SSL certificate. This also means that error-free client access to the server will not be possible at a later point in time. You can find our current CA certificates on our certificate download page.


Would you like to order one of our products? Then you have come to the right place. Public authorities who already worked with us can still contact us through our public agency support.

Service & Support

We have a comprehensive service portal that you can use to contact our support team in a quick and convenient manner. You will find there the support you need if you have technical problems along with information on the requirements for our solutions and possible applications as well as the respective documentation and price lists.