Public Key Infrastructure

Services Australia Public Key Infrastructure (PKI) certificates are one of the ways health professionals get secure access to our online services.

Changes to the way PKI forms are submitted

From 1 November 2022, PKI forms will need to be submitted online using the HPOS form upload function.

You’ll need an individual PRODA account linked to HPOS and have registered your organisation in PRODA

We issue PKI certificates to healthcare organisations.

Renewing Medicare and PBS PKI site certificates

We’ve renewed all Medicare and PBS PKI site certificates that expired on or before 13 March 2022.

If you can’t submit online claims using your practice management software, you may need to install your renewed PKI certificate.

To do this, you first need to check the expiry date of your certificate in your system’s certificate store. If you need help to do this contact your ICT support.

If the expiry date is on or before 13 March 2022, you need to install your renewed PKI certificate as soon as possible.

If you need to get a new PKI site certificate, contact the eBusiness Service Centre. Please have your Minor ID and PKI Certificate RA number ready when you call.

You’ll be unable to transmit claims and data to us using your practice management software until you install your renewed PKI site certificate. You’ll need to use alternative digital channels to continue transacting online until it’s installed. Find out more about online options for health professionals.

Secure Hash Algorithm

PKI certificates use secure hash algorithm (SHA) technology when sending transactions online.

Transactions through your practice management or patient administration software use SHA technology.

These transactions also need PKI site certificates, we issue users SHA-1 or SHA-2 PKI site certificates.

The latest version of some web browsers need SHA-2 technology to authenticate users.

If you need a specific SHA version of a PKI certificate, contact the eBusiness Service Centre.

National Authentication Service for Health PKI certificates

Healthcare providers and supporting organisations must have a National Authentication Service for Health (NASH) PKI certificate to access the My Health Record system. NASH PKI certificates can also be used to access the HI Service, electronic prescribing and secure messaging.

If your organisation uses a NASH PKI certificate, it may also be expiring on 13 March 2022. For more information go to the Australian Digital Health Agency website.

How to apply

Use these forms to apply for a PKI certificate:

Make sure you download the latest forms so your application isn’t delayed. There are recent changes to the evidence of identity criteria.

For more information about our services go to:

PKI policy documents

PKI certificate policies are the rules for how we issue and use PKI certificates. Read the PKI policies and terms and conditions before you use your PKI certificate.

Healthcare Public Directory

The Healthcare Public Directory lists individuals and organisations with active or revoked PKI certificates. For more information go to Certificates Australia.

Our PKI certificates meet the Gatekeeper (Public Key Infrastructure) framework under the International Organisation for Standardisation Health Informatics - Public Key Infrastructure technical specification (ISO/TS 17090).

PKI supporting documents, tools and software

Read how to install the PKI Certificate Manager.


If you need help with your PKI certificate contact us.

Page last updated: 13 March 2022