Revoke a certificate
Disables the running MQ credential before recording revocation. The request fails if runtime enforcement is unavailable. Repeated requests preserve the original revocation timestamp.
Authorizations
JWT bearer token issued by the identity provider.
Headers
Authorized bearer token used to derive the audit actor.
Request correlation identifier. Generated when omitted.
Path Parameters
Certificate id.
Response
OK
Whole days until expiry (0 the day it lapses, negative once expired). Always present — a real 0 is the most urgent operator signal.
Certificate id.
Validity end (expiry).
Certificate subject DN.
"CN=46026562, OU=SILOC"
Opaque reference to the private key in the FI's custody; the key itself is never stored here.
Validity start.
Revocation time. Omitted while the certificate is active.
Certificate serial number.

