Check SSL Certificates for the Vulnerable MD5 Algorithm

From 30th June 2011 Firefox will stop accepting SSL certificates using the MD5 hash. Since January 2009 all SSL certificates purchased from ServerTastic have stopped using the MD5 algorithm. However certificates purchased before this time may still be using MD5.

To check if your SSL certificate is using the MD5 algorithm use the tool below provided by SSLShopper.

Check SSL Certificates for the Vulnerable MD5 Algorithm

If your certificate is affected and it was issued by either RapidSSL, Geotrust, VeriSign or Thawte then you can use the link below to re-issue the certificate free of charge.

Re-issue SSL Certificate

If you have any queries about the MD5 algorithm please see our Support Desk.

Posted by Andy Gambles 

Mozilla/Firefox to stop accepting MD5 hash algorithm from June 30, 2011

Mozilla will be disabling MD5 in their environment from June 30, 2011. This means that any SSL certificates containing an MD5 signature algorithm will not work in later FireFox browsers after that date.

RapidSSL does not use the MD5 in certificates since May 2009. However, it is possible that a small number of older certificates may contain an MD5 signature.

In the next few months RapidSSL will be communicating to any affected customers that they should reissue their certificate. You do not have to wait for this email you can re-issue yoru certificate now if it is affected.

Reissuing your certificate is a simple process and will ensure your certificate contains a with a SHA-1 signature algorithm.

For instructions on reissuing your certificate please see: How do I re-issue my SSL Certificate?

Posted by Andy Gambles