Updated on April 3, 2025
SSL Certificate Updates
J.P. Morgan Host-to-Host has changed Certificate Authorities from Entrust to DigiCert. All new certificates will now be issued by DigiCert. This will include new DigiCert Root and Intermediate certificates.
The SSL certificates for FTPS were replaced on February 8.
The SSL Certificates for AS2, HTTPs, and NDM protocols will be replaced on April 12, 2025. The new certificates are available to download now below, but should not be used until after 5 p.m. on April 12.
FTPS Protocols:
If you connect via FTPS to transmissions.jpmorgan.com, please download the J.P. Morgan certificate and rename as needed.
The serial number for the current certificate that will be replaced on February 8, 2025 is: 33 21 7f f8 2f a4 b8 5f 4a 8c d5 a0 60 e3 26 01
AS2 and HTTPs Protocols:
- If you have AS2 server-based file transmissions and both factors below apply to your setup, then you must download and use the appropriate certificate(s) for transport encryption of the communications session:
- You are configured to use "strict host checking" and
- Your system is connecting to one of the URLs listed below
- Irrespective of the host connection address in use, all AS2 clients, including AS2 clients who only receive files from J.P. Morgan, must download and use the transmissions.jpmorgan.com server certificate for payload signature validation.
- If you have HTTPS server-based file transmissions and both factors below apply to your setup, then you must download and use the appropriate certificate(s):
- You are using SSL client-side authentication (two-way SSL authentication), and
- Your system is connecting to one of the URLs listed below
- If you exchange files with Host-to-Host node ECGPRODP by NDM via IBM® Sterling Connect:Direct® with Secure+®, then you must download and use the appropriate certificate.
**Certificates replaced in 2025 will be issued by our new Certificate Authority DigiCert (Previously Entrust)**
Be sure to use the applicable certificate for connections to node ECGPRODP by NDM via IBM® Sterling Connect:Direct® with Secure+®. The current certificates are available for download below.
For AS2 and HTTPS protocols, use:
- 2025 transmissions.jpmorgan.com.p7b (effective April 12, 2025 and issued by new CA Digicert, formerly Entrust)
- 2025 transmissions1.jpmorgan.com.p7b (effective April 12, 2025 and issued by new CA Digicert, formerly Entrust)
- 2025 transmissions2.jpmorgan.com.p7b (effective April 12, 2025 and issued by new CA Digicert, formerly Entrust)
- 2025 transmissions3.jpmorgan.com.p7b (Effective April 12, 2025 and issued by new CA Digicert, formerly Entrust)
- 2025 transmissions4.jpmorgan.com.p7b (Effective April 12, 2025 and issued by new CA Digicert, formerly Entrust)
- 2025 transmissions5.jpmorgan.com.p7b (Effective April 12, 2025 and issued by new CA Digicert, formerly Entrust)
- 2025 transmissions6.jpmorgan.com.p7b (Effective April 12, 2025 and issued by new CA Digicert, formerly Entrust)
- 2025 transmissions7.jpmorgan.com.p7b (Effective April 12, 2025 and issued by new CA Digicert, formerly Entrust)
- 2025 transmissions8.jpmorgan.com.p7b (Effective April 12, 2025 and issued by new CA Digicert, formerly Entrust)
IMPORTANT: If you must download and install the Entrust CA Root and Intermediate certificates separately, you will find them provided below. The certificate links above are chained with the same Entrust CA Root and Intermediates.