What is a Digital Certificate for Online Notary Remote Online Notarizations?
Already a notary? Our self-paced online courses help you expand your services and grow your income. Browse courses →
Electronic Notarization Explained
Remote online notarization (RON) lets a notary and signer meet over video instead of in person. The notary verifies the signer’s identity through knowledge-based authentication (KBA) or biometric credential analysis, watches the signer sign, then applies a digital signature and electronic seal to the document. The entire session is recorded and stored.
To do this, the notary needs a digital certificate. This is not optional. Without one, the digital signature applied to the document has no cryptographic validity, and the notarization will not be accepted by recording offices, title companies, or courts.
Digital Certificates Defined
A digital certificate is an electronic credential issued by a Certificate Authority (CA). It ties the notary’s identity to a pair of cryptographic keys: a private key and a public key.
- Private key: Stored on the notary’s device (or in the RON platform). Used to sign documents. Must be kept secure and is usually protected by a password or hardware token.
- Public key: Shared openly. Anyone receiving a notarized document can use the public key to verify that the private key holder (the notary) signed it, and that the document has not been altered since signing.
The certificate itself contains the notary’s name, email, commission information, the CA’s name, an expiration date, and the public key. When a notary applies their digital signature to a document, the certificate is embedded in the signature block, allowing anyone to verify who signed it and when.
How Digital Signatures Work
A digital signature is not a picture of your handwritten signature. It is a cryptographic hash unique to both the document and the signer. Here is what happens when a notary signs a document electronically:
- The RON platform creates a hash (a fixed-length string of characters) from the document’s contents.
- The notary’s private key encrypts that hash.
- The encrypted hash is attached to the document as the digital signature.
- Anyone opening the document later can decrypt the hash using the notary’s public key and compare it to a fresh hash of the document. If they match, the document has not been changed.
If someone changes a single character in the document after signing, the hashes will not match, and the signature will show as invalid. This is what makes digital signatures tamper-evident.
How to Obtain a Digital Certificate
In most cases, your RON platform handles the digital certificate for you. Platforms like Notarize, DocuSign Notary, Pavaso, BlueNotary, and OnlineNotary.net bundle the certificate as part of their service. When you register with the platform and pass identity verification, the platform’s CA partner issues your certificate.
If your state or employer requires you to obtain your own certificate independently:
- Choose a Certificate Authority: Look for a CA that provides X.509 digital certificates compliant with the AdES (Advanced Electronic Signatures) standard. IdenTrust and Entrust are two commonly used providers for notaries.
- Verify your identity: The CA requires proof of identity, usually a government-issued photo ID and sometimes a video call. Some CAs require a background check.
- Complete the application: Provide your notary commission information, contact details, and pay the fee.
- Receive and install the certificate: The CA issues the certificate as a file (.p12 or .pfx format). You install it on your computer or import it into your RON platform. The certificate is typically valid for 1 to 3 years.
What It Costs
Digital certificate pricing depends on how you obtain it:
- Included with RON platform subscription: Most notaries pay $20 to $50 per month for a RON platform, and the digital certificate is part of that. Notarize, DocuSign Notary, and BlueNotary all include it.
- Standalone certificate from a CA: $50 to $200 per year from providers like IdenTrust or Entrust. Some states require this if you use your own RON software instead of a hosted platform.
- Hardware token: Some states or employers require the private key to be stored on a physical USB token (like a YubiKey) rather than on the computer’s hard drive. These cost $40 to $80.
Electronic Notary Seals vs. Digital Certificates
These are two separate things, and both are required for RON:
- Digital certificate: Proves who you are cryptographically. Tied to your identity through the CA.
- Electronic notary seal: A digital image of your notary seal (the same information as your physical stamp: name, commission number, state, expiration date). Applied to the document alongside your digital signature.
Most RON platforms generate the electronic seal automatically from your commission information. In some states, you must upload a seal image that has been approved by the Secretary of State. Check your state’s requirements.
State Requirements
Over 40 states have enacted RON laws as of 2026, and most require the notary to use a digital certificate from an approved provider. Key variations:
- Texas, Florida, Virginia: Early adopters with established RON rules. Accept certificates from most major CAs.
- California: Allows RON under certain conditions. The notary must use an approved RON technology provider.
- New York: Passed RON legislation but implementation has been slow. Check current status with the Department of State.
Before purchasing a certificate, confirm that your state accepts RON and that your chosen CA or platform meets the state’s technology requirements.
Security Best Practices
- Never share your private key: The private key is the core of your digital identity. If someone obtains it, they can sign documents as you.
- Use a strong password: If the certificate is password-protected, use a complex, unique password. Store it in a password manager.
- Use a hardware token if available: Storing the private key on a physical device that cannot be extracted provides stronger protection than software-based storage.
- Renew before expiration: Digital certificates expire. If yours lapses, you cannot perform RON until it is renewed. Most CAs send renewal notices 30 to 60 days before expiration.
- Revoke if compromised: If you suspect your private key has been stolen, contact the CA immediately to revoke the certificate. They will issue a new one.
Frequently Asked Questions
Do I need a digital certificate for in-person notarization?
No. Digital certificates are only required for remote online notarization (RON). In-person notarizations use your physical stamp and handwritten signature.
Can I use the same digital certificate in multiple states?
The digital certificate itself is not state-specific, but you must hold a valid notary commission in each state where you perform RON. Some RON platforms manage multiple commissions under one account.
How long does it take to get a digital certificate?
If it comes with your RON platform, it is issued during registration (minutes to a few hours). If you apply independently through a CA, expect 1 to 5 business days for identity verification.
What happens if my digital certificate expires?
You cannot perform RON until you renew it. Documents you already notarized with the old certificate remain valid, since the signature timestamp falls within the certificate’s validity period.
Is a digital signature the same as an electronic signature?
No. An electronic signature is any electronic representation of a signature (even a typed name). A digital signature uses cryptography and a certificate to verify identity and detect tampering. All digital signatures are electronic signatures, but not all electronic signatures are digital signatures.

