The certificate error from TFRI during synchronization #26
Description
The harvest from TFRI stopped a while ago. First, we found the issue was that synchronization was disabled and the base mn url was wrong. However, after fixed the two issues, the harvest still doesn't work and the error message is:
[ERROR] 2026-03-25 18:24:14,440 [SynchronizationQuartzScheduler_Worker-12] (ObjectListHarvestTask:getFullObjectList:328) urn:node:TFR- <?xml version="1.0" encoding="UTF-8"?>
<error detailCode="0 Client_Error" errorCode="500" name="ServiceFailure">
<description>class org.dataone.client.exception.ClientSideException: /Received fatal alert: bad_certificate</description>
</error>
We asked Kevin from TFRI to check if the certificate issued by Dataone CA was expired. He told us that the certificate is valid.
Also the web server's certificate has some Chinese characters like:
Owner: CN=[metacat.tfri.gov.tw](http://metacat.tfri.gov.tw/), O=政府機關-行政院-農業部-林業試驗所, L=臺灣, C=TW
Those characters caused our attention. Kevin told us that it is very difficult to have a certificate without the Chinese characters and it has been long time their certificate having Chinese characters.
So we have to enable ssl debug on Tomcat to figure out the reason.