Scheduled maintenance is currently in progress. We will provide updates as necessary.
Posted Jan 28, 2026 - 12:00 EST
Update
We will be undergoing scheduled maintenance during this time.
Posted Jan 28, 2026 - 10:53 EST
Scheduled
Visa will be updating a set of staging and production Leaf certificates that are set to expire on March 28, 2026 and April 3, 2026. To prevent disruption to services, we ask that you review your configuration immediately.
The Leaf certificates that are expiring are the client certificates sent by VISA to your endpoint as part of the mutual TLS (MTLS) handshake for RDX, ADX, or Oauth connections.
Please review the certs below to see if they are in use with your VCAS connection.
The expiring STAGING leaf certificate details:
Common Name (CN): rdxstag.cardinalcommerce.com Serial Number: 0d:d1:c3:f3:51:d6:14:49:b0:70:2f:5e:c0:d1:4a:47 Date of Replacement: February 26, 2026 10:00 EDT Date of Expiry: March 28, 2026 18:59:50 EDT
The new STAGING leaf certificate details: Common Name (CN): rdxstag.cardinalcommerce.com Date of Replacement: February 26, 2026 10:00 EDT Date of Expiry: February 20, 2027 6:59:59 EDT
The expiring PRODUCTION leaf certificate details: Common Name (CN): rdx.cardinalcommerce.com Serial Number: 0e:ad:8d:09:10:2f:51:d8:0f:b6:14:ee:c1:75:f0:a1 Date of Replacement: March 5, 2026 10:00 EDT Date of Expiry: April 3, 2026 18:59:59 EDT
The new PRODUCTION leaf certificate details: Common Name (CN): rdx.cardinalcommerce.com Serial Number: 02:95:85:5b:19:01:d1:1c:db:f3:15:60:6d:d9:f4:99 Date of Replacement: March 5, 2026 10:00 EDT Date of Expiry: February 22, 2027 6:59:59 EDT
The Intermediate CA and Root CA will remain the same:
Intermediate Certificate Details: Common Name (CN): DigiCert Global G2 TLS RSA SHA256 2020 CA1 Serial Number: 0c:f5:bd:06:2b:56:02:f4:7a:b8:50:2c:23:cc:f0:66
Root Certificate Details: Common Name (CN): DigiCert Global Root G2 Serial Number: 03:3a:f1:e6:a7:11:a9:a0:bb:28:64:b1:1d:09:fa:e5
Customer Responsibilities:
If you trust on the leaf certificate, we will have to coordinate the switchover with your connection. Please contact your local VCAS support and/or account manager to coordinate this change.
If you require coordination, we will schedule a time to switch over the leaf certificate. It is imperative that the migration occur before certificate expiration, otherwise RDX services will be impacted.
If you do not require coordination, we will be performing the switchover to the new client certificates on the dates specified above.
If you trust on the Intermediate and Root CA certificate, you do not need to make any modifications. If you do not require coordination, we will be performing the switchover to the new client certificates on the above dates.
Testing – How can I test these changes?
Customers are encouraged to work with their network teams to ensure they can support the updated certificates.
No new parameters or fields are required for these changes. If you do not trust the new certificate, you will be unable to connect to Cardinal endpoints receiving a connection timeout or certificate error response.
Please do not hesitate to contact your Local VISA support if you have any questions or concerns. You may also contact support or your account manager if you require the full Cert Chain.