DocuSign public certificates

Digital certificates provide higher levels of identity authentication and document transaction security. Digital certificates cryptography uses Public Key Infrastructure (PKI) technology to issue certificates based on X.509 standards to represent the digital identity of a signer. Standard-based signatures is the DocuSign platform for providing a full range of signature capabilities using digital certificates.

 

PKI documentation

• Certificate Policy / Certification Practice Statement (CP/CPS v1.1) (788.2 KB)
• Relying Party Agreement (RPA v1.0) (118.6 KB)
• Subscriber Agreement (SA v1.0) (114.8 KB)

 

Site certificates

• Demo SSL certificate (1.7 KB): the current demo SSL certificate, expires on 2/23/2019
• www (NA1) SSL certificate (1.9 KB): the current www (NA1) SSL certificate, expires on June 23, 2019
• Renewed www (NA1) SSL (2.5 KB): to be renewed on August 15, 2018 (moved the certificate to the DigiCert root to avoid Chrome distrust)  
• (NA2) SSL certificate (1.9 KB): the current NA2 SSL certificate, expires on June 23, 2019
• Renewed NA2 SSL certificate (2.4 KB): to be renewed on August 22, 2018 (moved the certificate to the DigiCert root to avoid Chrome distrust) 
• (NA3) SSL certificate (1.9 KB): the current NA3 SSL certificate, expires on March 29, 2020
• EU SSL certificate (2.5 KB): the current EU SSL certificate, expires on February 27, 2019
• Renewed EU SSL (2.4 KB): to be renewed on August 29, 2018 (moved the certificate to the DigiCert root to avoid Chrome distrust)

 

Intermediate and Root Certificate Authorities (CA)

• DigiCert Intermediate CA (1.2 KB): Intermediate CA for NA3 certificate, renewed Demo certificate, renewed www (NA1) certificate, renewed NA2, and renewed EU certificate
• DigiCert Root CA (969 bytes): Root CA for NA3 certificate, renewed Demo certificate, renewed www (NA1) certificate, renewed NA2, and renewed EU certificate
• Symantec Intermediate CA (1.8 KB): Intermediate CA for Demo/NA1/NA2/EU SSL certificates
• Symantec Root CA (1.7 KB): Root CA for Demo/NA1/NA2/EU SSL certificates
• DocuSign root CA (939 bytes): Root CA certificate used for Express Digital Signatures

 

SSO certificates

• DocuSign SSO certificate (1.7 KB): current SSO certificate

 

Connect certificates

The Connect certificates are used for Mutual TLS and for digitally signed, SOAP-formatted notification messages. The common name for each certificate is:

• DocuSign Developer Sandbox (Demo): demo.connect.net
• DocuSign North American Services (NA1, NA2, NA3): connect.docusign.net
• DocuSign European Services (EU): eu.connect.docusign.net
  • Current Certificates
  • DEMO and stage environments: DocuSign Connect x.509 (2.4 KB): current as of May 2, 2018, expires on February 9, 2020 (name: demo.connect.docusign.net)
  • EU environments: DocuSign Connect x.509 (2.6 KB): current as of May 16, 2018, expires on February 9, 2021 (name: eu.connect.docusign.net) 
  • NA1, NA2, and NA3 environments: DocuSign Connect x.509 (2.5 KB): current as of May 25, 2018, expires on February 9, 2021 (name: connect.docusign.net)
  • AU environment: DocuSign Connect x.509 (1.7 KB): current as of April 9, 2018, expires on October 31, 2019 (name: au.connect.docusign.net)
  • CA environment: DocuSign Connect x.509 (1.7 KB): current as of May 1, 2018, expires on Feb 28, 2020 (name: ca.connect.docusign.net)
  • Intermediate certificate: expires on March 8, 2023 (name: DigiCert SHA2 Secure Server CA)
  • Root certificate: expires on November 10, 2031 (name: DigiCert Global Root CA)

 

Security appliance certificates

• DocuSign Client certificate (1.9 KB): current certificate for DocuSign Security Appliance client validation
• Renewed DocuSign Client certificate: to be renewed in Demo and then Prod starting April 25, 2018
• Root and Intermediate CA is the DigiCert Root and Intermediate CA listed under “Intermediate and Root Certificate Authorities (CA)” section.

 

Account server certificates

• Account-d.docusign.com (2.6 KB): the current demo account server SSL certificate, expires on March 26, 2020
• Account.docusign.com (2.6 KB): the current account server SSL certificate, expires on March 26, 2020
• Root and Intermediate CA is the DigiCert Root and Intermediate CA listed under “Intermediate and Root Certificate Authorities (CA)” section.

 

Signed by certificates

• Signed by certificate (2.6 KB): Renewed in Demo on May 9, 2018, and Prod on June 6, 2018
• Root and Intermediate CA is the DigiCert Root and Intermediate CA listed under “Intermediate and Root Certificate Authorities (CA)” section.

 

Entrust certificates

• Entrust certificate (2.0 KB) : for signature verification
• Entrust intermediate certificate (1.9 KB)
• Entrust root certificate (1.5 KB)

 

Code signing certificates

• DocuSign code-signing public certificate (3.0 KB)