DocuSign eSignature public certificates

Digital certificates provide higher levels of identity authentication and document transaction security. Digital certificates cryptography uses Public Key Infrastructure (PKI) technology to issue certificates based on X.509 standards to represent the digital identity of a signer. Standard-based signatures is the DocuSign platform for providing a full range of signature capabilities using digital certificates.

 

PKI documentation

• DocuSign Express Certificate Authority

• Certificate Policy / Certification Practice Statement (CP/CPS v1.1) (788.2 KB)
• Relying Party Agreement (RPA v1.0) (118.6 KB)
• Subscriber Agreement (SA v1.0) (114.8 KB)

• DocuSign External Certificate Authority

• DocuSign External Certificate Policy (CP v1.0) (2MB)

 

Site Certificates

• Current Site Certificates
• Demo SSL certificate (2.59 KB): The current demo SSL certificate, expires on ‎February ‎22, ‎2021
• NA1 (www) SSL (2.6 KB): The current NA1 SSL certificate, expires on June 22, 2021
• NA2 SSL certificate (2.6 KB): The current NA2 SSL certificate, expires on June 22, 2021
• NA3 SSL Certificate (2.61 KB): The current NA3 SSL certificate, expires on March 29, 2022
• NA4 SSL Certificate (2.59 KB): The current NA4 SSL certificate, expires on December 2, 2021
• EU SSL certificate (2.58 KB): The current EU SSL certificate, expires on February 26, 2021
• AU SSL certificate (2.58 KB): The current AU SSL certificate, expires on October 30, 2021
• CA SSL certificate (2.58 KB): The current CA SSL certificate, expires on February 27, 2022

 

Intermediate and Root Certificate Authorities (CA) for Site Certificates 

Current Certificates

• DigiCert Intermediate CA (1.2 KB): Intermediate CA for Demo/NA1/NA2/NA3/EU/AU/CA SSL certificates

• DigiCert Root CA (969 bytes): Root CA for Demo/NA1/NA2/NA3/EU/AU/CA SSL certificates

• DocuSign root CA (939 bytes): Root CA certificate used for Express Digital Signatures

 

SSO Certificates

• DocuSign SSO certificate (2.38 KB): This certificate expires April 15, 2021.
• **Note: The Intermediate and Root certificates are as follows:
  • Intermediate certificate: expires on March 8, 2023 (name: DigiCert SHA2 Secure Server CA)
  • Root certificate: expires on November 10, 2031 (name: DigiCert Global Root CA)

 

Connect Certificates

The Connect certificates are used for Mutual TLS and for digitally signed, SOAP-formatted notification messages.

• Current Connect Certificates
• The common name for each certificate is:
  • DocuSign Developer Sandbox (Demo): demo.connect.docusign.net
  • DocuSign North American Services (NA1, NA2, NA3, NA4): connect.docusign.net
  • DocuSign European Services (EU): eu.connect.docusign.net
  • DocuSign Australian Services (AU): au.connect.docusign.net
  • DocuSign Canadian Services (CA): ca.connect.docusign.net
  • Intermediate Certificate: SHA2 Secure Server CA
  • Root Certificate: DigiCert Global Root G2 CA

•  
• Current Certificates
  • DEMO and stage environments: DocuSign Connect x.509 (2.4 KB): current as of October 9, 2019, expires on June 19, 2021 (name: demo.connect.docusign.net)
  • NA1, NA2, NA3 and NA4 environments: DocuSign Connect x.509 (2.4 KB): current as of June 19, 2019, expires on June 20, 2021 (name: connect.docusign.net)
  • EU environments: DocuSign Connect x.509 (2.4 KB): current as of November 6, 2019, expires on June 20, 2021 (name: eu.connect.docusign.net)
  • AU environment: DocuSign Connect x.509 (2.4 KB): current as of October 23, 2019, expires on June 20, 2021 (name: au.connect.docusign.net)
  • CA environment: DocuSign Connect x.509 (2.4 KB): current as of October 30, 2019, expires on June 20, 2021 (name: ca.connect.docusign.net)
  • Intermediate certificate: expires on August 1, 2028
  • Root certificate: expires on January 15, 2038

 

Security Appliance Certificates​

• Current Security Appliance Certificate
• Current DocuSign Client certificate: current certificate for DocuSign Security Appliance client validation, expires on April 4, 2022
•  
• The required Root and Intermediate CA certificates are:
• Intermediate certificate: expires on July 2, 2030
• Root certificate: expires on January 15, 2038
• DigiCert Root and Intermediate CA is also listed under “Intermediate and Root Certificate Authorities (CA)” section.
•  

Account Server Certificates

• Current Account Server Certificates
• account-d.docusign.com (2.6 KB): the current demo account server SSL certificate, expires on March 3, 2022
• account.docusign.com (2.6 KB): the current account server SSL certificate, expires on March 26, 2022
• na.account.docusign.com (1.85 KB): the current NA account server SSL certificate, expires on March 28, 2021
• eu.account.docusign.com (1.85 KB): the current EU account server SSL certificate, expires on March 6, 2021
• ca.account.docusign.com (1.85 KB): the current CA account server SSL certificate, expires on March 6, 2021
• au.account.docusign.com (1.85 KB): the current AU account server SSL certificate, expires on March 6, 2021
• DigiCert Root and Intermediate CA is also listed under “Intermediate and Root Certificate Authorities (CA)” section.

 

Signed By Certificates

Current Signed by Certificate

• Signed by certificate (2.5 KB): the current Signed by certificate, expires on March 28, 2022
•  
• The required Root and Intermediate CA certificates are:

• Intermediate certificate: expires on July 2, 2030

• Root certificate: expires on January 15, 2038
• DigiCert Root and Intermediate CA is also listed under “Intermediate and Root Certificate Authorities (CA)” section

 

Entrust Certificates

 

The current DocuSign Entrust certificate used to digitally seal documents is expiring on December 20 2020.

The following schedule lists the dates DocuSign will install the new Entrust certificate in DEMO and PROD environments prior to expiry of the current certificate so that DocuSign can continue to seal documents seamlessly.

• DEMO environment certificate update: Wednesday October 14th 2020.
• PRODUCTION environment certificate update for AU, CA & EU environments: Wednesday November 11th 2020.
• PRODUCTION environment certificate update for NA1, NA2, NA3, NA4  environments: Wednesday November 18th 2020.

Note: after the dates above, customers may still see either the current or new certificate in use in the seal for a short period of time until the new configuration is fully replicated to all zones.

The current Certificates in Production are as follows: 

• Entrust certificate (2.0 KB): for signature verification, expires on December 20, 2020
• Entrust intermediate certificate (1.9 KB)
• Entrust root certificate (1.5 KB)

 

DocuSign ECA Certificates

• DocuSign ECA Root certificate (2.0 KB): for signature verification, expires on November 26, 2029
• DocuSign ECA Issuing certificate (2.0 KB)

 

DocuSign France

• DocuSign France Certification Authorities