Revoking Credentials
Revocation invalidates an active credential. The credential itself is not deleted — it remains accessible but is marked as revoked so verifiers know it's no longer valid.
When to Revoke
- Product information has changed and a new credential needs to replace it
- A credential was issued with incorrect information
- A facility is no longer operational
- A certification has expired or been withdrawn
How to Revoke
- Go to Toolkit > Credentials
- Find the active credential you want to revoke
- Click the Revoke action
- Confirm the revocation
What Happens
When you revoke a credential:
- The credential's entry in VCKit's bitstring status list is flipped to "revoked"
- The credential metadata in the database is updated to
status: revoked - The signed credential remains in storage (it is not deleted)
- The resolver entry remains (the link still works)
Anyone who subsequently verifies the credential will see that it has been revoked.
Revocation is Permanent
caution
Revocation cannot be undone. Once a credential is revoked, you must issue a new credential to replace it. In pilot mode, the new credential will overwrite the same resolver path.
After Revoking
If you need to replace a revoked credential:
- Navigate to Toolkit > Credentials > Issue
- Create a new credential with the updated information
- In pilot mode: the new credential automatically overwrites the existing resolver entry
- In production mode: the new credential gets a new identifier and resolver entry
Permissions
Only organization Admins can revoke credentials. Editors and Viewers do not have revocation permissions.