I worked around this by adding the re-keyed certificate under a different name (I dropped the "www." in front of the domain name), and then selected the new cert from the dropdown menu where you select the certificate when activating SSL on the domain. This changed the number of times the cert...