ISSUE:
Replacement of SSL certificates on the Treasury Website
SYSTEMS/PROCESSES IMPACTED:
Scripts and other automated processes that download OFAC's list-related data products; browsing OFAC's website (depending on browser used and its configuration).
WARNING:
Failure to act on the advice provided in this notice may prevent SDN (and other list) screening systems from properly updating.
DESCRIPTION AND REMEDY:
The US Department of Treasury is initiating the annual renewal of the public-trusted certificate securing www.treasury.gov website, including OFAC sanctions list downloads. The existing certificate (expiring May 18, 2023) will be replaced on May 15, 2023 at 8PM EDT. This process will take roughly 1 hour for the replacement certificate to be fully distributed worldwide.
If your application pins or otherwise trusts the serial number of the existing certificate as part your application functionality, you may need to update your configuration to trust the renewed certificate. The renewed public certificate, effective May 15, 2023 at 8PM EDT, can be downloaded via the following URL https://s3.amazonaws.com/www.treasury.gov-2023-certificate/www.treasury.gov-2023-2024-Renewed-Certificate.zip. To prevent loss in functionality, please ensure your applications trust this server, intermediate, and root certificate, by the May 15, 2023 replacement date.
Please contact OFAC technical support at 1-800-540-6322 Option #8 or O_F_A_C@treasury.gov with any questions that you may have about this change.