Organisation Validation Digital Certificate (Server) with “Wildcard” feature

Organisation Validation (OV) Digital Certificate (d-Cert) (Server) with the “Wildcard” feature provides standard SSL/TLS encryption for a primary domain and all of its subdomains by verifying both the applicant’s control over the base domain and the legal legitimacy of the organisation. This solution enables secure HTTPS connections across the website, removes “Not Secure” warnings displayed by web browsers, and delivers foundational data protection with enhanced user trust.​

​The certificate utilises a wildcard character (the asterisk “*”) as the left‑most component of the fully qualified domain name. When issued, it secures all subdomains under the specified domain and supports deployment across server names at the same domain or subdomain level owned by the subscriber organisation. The certificate is offered with a one‑year subscription period.​

During the one‑year subscription period, subscribers may obtain an unlimited number of new d-Certs (Server) under the same application at no additional charge. The validity period of each newly issued certificate will be subject to either the phased maximum validity period or the remaining subscription period, whichever is shorter.​

Example​

An OV d-Cert (Server) with the “Wildcard” feature issued for *.hkca.hk may be used to secure all server names under the domain hkca.hk, including but not limited to:​

  • www.hkca.hk
  • hkca.hk
  • mail.hkca.hk
  • www1.hkca.hk

Note:

  1. An OV d-Cert (Server) with the “Wildcard” feature is issued for use on one server by default.​
  2. For installation on multiple servers, an additional subscription fee applies for each additional server. The exact number of additional servers must be specified at the time of application.​
  3. Each additional physical server or virtual machine operating on a separate operating system from the default server is regarded as a chargeable additional server.​
  4. Subscribers may increase the number of additional servers at any time during the subscription period, provided that the applicable subscription fee per additional server, covering the entire subscription period of the certificate, is paid.​
  5. The certificate includes digital signature key usage, the Subject Alternative Name (SAN) field, and the Extended Key Usage field. For details, please refer to Appendix B of the Certification Practice Statement (CPS).​
  6. Digital signatures supported by the OV d-Cert (Server) with the “Wildcard” feature are intended solely for server authentication and the establishment of secure communication channels. They must not be used for contract negotiations, legally binding agreements, or monetary transactions.

Eligibility for OV d-Cert (Server) with “Wildcard” ​

​An OV d-Cert (Server) with “Wildcard” feature is intended for organisations and businesses that operate a website with multiple sub‑domains and require a higher level of trust than Domain Validation. It verifies both control of the domain name and the legal identity of the organisation and secures the main domain and all its sub‑domains under a single certificate.​

​This certificate is suitable for business websites, service portals, login platforms, and corporate systems where users need assurance that the website is operated by a verified and legitimate organisation, while enabling consistent protection across multiple sub‑domains.​

Document required for the OV d-Cert (Server) application

  • Copy of proof of ownership of all the applied domain name(s) to be included in the certificate

If the Applicant is a company registered in Hong Kong :

  • Copy of Business Registration Certificate issued by the Inland Revenue Department
  • Copy of Certificate of Incorporation / Certificate of Registration issued by the Companies Registry (applicable to limited companies)
  • Completed, signed and stamped Authorisation Letter designating the authorised representation

If the Applicant is a bureau or department of the HK SAR Government :

  • A memo signed by the Departmental Secretary (or staff at equivalent rank or above) and endorsed with department chop designating the Authorised Representative

If the Applicant is statutory body in Hong Kong :

  • Copy of the ordinance(s) under which the statutory body was established
  • Completed, signed and stamped Authorisation Letter.

 

​Benefits of Using an OV d-Cert (Server) with “Wildcard” ​

​The use of an OV d-Cert (Server) with “Wildcard” feature enables organisations to encrypt data transmitted between users and servers using standard SSL/TLS technology while also verifying the organisation’s legal identity. This provides a higher level of trust and assurance than Domain Validation certificates and allows users to clearly identify the organisation behind the website.​

​In addition, an OV Wildcard d-Cert (Server) simplifies certificate management by securing all sub‑domains with a single certificate, reduces administrative overhead, and strengthens the organisation’s digital credibility across its entire web presence.

Click here to log in d-Cert Subscriber Portal to register or submit d-Cert (Server) application.