{
  "type": "https://errors.swepay.com.br/ca-manager/certificate-limit-reached",
  "service": "ca-manager",
  "slug": "certificate-limit-reached",
  "httpStatus": 409,
  "title": "Certificate Limit Reached",
  "summary": "The tenant has reached its quota of active certificates.",
  "description": "The tenant has reached the maximum number of active mTLS certificates\npermitted by its plan, so CA Manager will not issue another until headroom is\nfreed. The limit protects the certificate authority and keeps revocation\nlists manageable for financial-market integrations.\n\nThe response includes `limit` and `current` extension members so your client\ncan show exactly where the tenant stands.\n",
  "commonCauses": [
    "The plan's active-certificate quota is fully consumed.",
    "Expired or unused certificates were never revoked and still count.",
    "Automation is issuing certificates faster than it retires them."
  ],
  "clientAction": "Revoke certificates you no longer need to free up quota, then retry the\nissuance. Audit for orphaned or duplicate certificates that can be retired.\nIf your legitimate usage has outgrown the plan, request a quota increase\nthrough your account owner. Retrying without freeing headroom will keep\nreturning this error.\n",
  "exampleResponse": {
    "type": "https://errors.swepay.com.br/ca-manager/certificate-limit-reached",
    "title": "Certificate Limit Reached",
    "status": 409,
    "detail": "The active certificate limit for your plan has been reached.",
    "instance": "/v1/certificates",
    "limit": 100,
    "current": 100
  },
  "relatedDocs": [
    {
      "label": "RFC 9457 — Problem Details",
      "url": "https://www.rfc-editor.org/rfc/rfc9457"
    },
    {
      "label": "CA Manager API — OpenAPI",
      "url": "https://api.swepay.com.br/ca-manager/openapi.json"
    }
  ],
  "category": "service",
  "deprecated": false,
  "documentation": "https://errors.swepay.com.br/ca-manager/certificate-limit-reached"
}