Metaregistrar EPP documentation

All SSL commands: (create) (delete) (info) (renew) (reissue) (poll)

SSL Create

To create a SSL certificate you need to use the ssl:create command. The command takes some basic parameters, one or more hostnames, and the approver information for the person or company that will approve the certificate.

Please not that the CSR information must be base-64 encoded, to be accepted by our systems. A list of possible products can be received from the support department of Metaregistrar.

Please also note that the e-mail address in the approver section must be one of hostmaster, postmaster, info@ the domain name requested. When an additional e-mail address is needed that is not associated with the domain name in question, us the saEmail field for that.

The company, department and company registration fields may be filled, but are not mandatory.

Due to SSL restrictions, years (period) can be only 1 or 2 years.

The field validation in the hosts section can have the following values: EMAIL (e-mail address required), DNS (uniqe setting in the DNS) or FILE (unique file on server).

Example Create request

<?xml version="1.0" encoding="UTF-8"?> <epp xmlns="urn:ietf:params:xml:ns:epp-1.0" xmlns:ssl="http://www.metaregistrar.com/epp/ssl-1.0"> <command> <create> <ssl:create> <ssl:csr>LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS...S0tLS0K</ssl:csr> <ssl:product>COMO.MUL.OV</ssl:product> <ssl:years>1</ssl:years> <ssl:hosts> <ssl:host> <ssl:name>example.com</ssl:name> <ssl:validation>EMAIL</ssl:validation> <ssl:email>admin@example.com</ssl:email> </ssl:host> <ssl:host> <ssl:name>test1.example.com</ssl:name> <ssl:validation>DNS</ssl:validation> </ssl:host> <ssl:host> <ssl:name>test2.example.com</ssl:name> <ssl:validation>DNS</ssl:validation> </ssl:host> <ssl:host> <ssl:name>test3.example.com</ssl:name> <ssl:validation>DNS</ssl:validation> </ssl:host> <ssl:host> <ssl:name>*.example.com</ssl:name> <ssl:validation>DNS</ssl:validation> </ssl:host> </ssl:hosts> <ssl:approver> <ssl:email>hostmaster@example.com</ssl:email> <ssl:saEmail>emailaddress@example.com</ssl:saEmail> <ssl:phone>+31.612345678</ssl:phone> <ssl:firstName>Example</ssl:firstName> <ssl:lastName>Lastname</ssl:lastName> <ssl:company>Companyname</ssl:company> <ssl:department>Infra</ssl:department> <ssl:companyRegistration>12345678</ssl:companyRegistration> <ssl:street>Streetname 12</ssl:street> <ssl:postalCode>1111AB</ssl:postalCode> <ssl:city>City</ssl:city> </ssl:approver> <ssl:language>nl</ssl:language> </ssl:create> </create> <clTRID>5a27b8d011a0e</clTRID> </command> </epp>

Response for this create command

Please store the certificateId, because it will be needed for further ssl:info or ssl:renew requests <?xml version="1.0" encoding="UTF-8"?> <epp xmlns="urn:ietf:params:xml:ns:epp-1.0" xmlns:ssl="http://www.metaregistrar.com/epp/ssl-1.0"> <response> <result code="1000"> <msg>Command completed successfully</msg> </result> <resData> <ssl:creData> <ssl:certificateId>1</ssl:certificateId> <ssl:provisioningId><![CDATA[108_f41c3cb5ebaf33b96843ee807f2644397648f41e]]></ssl:provisioningId> <ssl:commonName><![CDATA[example.com]]></ssl:commonName> <ssl:status><![CDATA[new]]></ssl:status> <ssl:created><![CDATA[2018-04-11 10:28:36 UTC]]></ssl:created> <ssl:modified><![CDATA[2018-04-11 10:28:36 UTC]]></ssl:modified> </ssl:creData> </resData> <trID> <clTRID>5acde3549c727</clTRID> <svTRID>808c0df0e210fa7f90dd348626560902258377cec3df</svTRID> </trID> </response> </epp>