I’m managing several thousand certificates through a custom implementation. Right now every time I am issued a new certificate, I retrieve the issuer from the rel=“up” link header and bundle that together with the certificate and store it. The bundling is leading to a lot of duplicate storage. I was curious if it was safe to just grab the issuer and store it once, then use that to bundle all certificates issued from Let’s Encrypt on the fly so I don’t have all that duplicate storage.
When the issuer certificate reissues at some point in the future, will that new issuer certificate work with LE certificates previously issued? Any other concerns with this approach? Trying to figure out the best way to manage this.
Thanks in advance!