diff --git a/install_config/redeploying_certificates.adoc b/install_config/redeploying_certificates.adoc
index 9a0ea6081f1f..8d087909f1aa 100644
--- a/install_config/redeploying_certificates.adoc
+++ b/install_config/redeploying_certificates.adoc
@@ -574,13 +574,7 @@ $ oc deploy dc/docker-registry --latest
 [[redeploying-router-certificates-manually]]
 ==== Redeploying Router Certificates Manually
 
-When routers are initially deployed, an annotation is added to the router's
-service that automatically creates a
-xref:../dev_guide/secrets.adoc#service-serving-certificate-secrets[service serving certificate secret].
-
-To redeploy router certificates manually, that service serving certificate can
-be triggered to be recreated by deleting the secret, removing and re-adding
-annotations to the `router` service, then redeploying the router:
+To redeploy router certificates manually, you must add new router certificates to a secret named `router-certs`, then redeploy the router:
 
 . Switch to the `default` project for the remainder of these steps:
 +
@@ -685,6 +679,18 @@ $ oc create secret tls router-certs --cert=router.pem \ <1>
 <1> *_router.pem_* is the file that contains the concatenation of the
 certificates that you generated.    
 
+. Redeploy the router:
++
+----
+$ oc rollout latest dc/router
+----
++
+When routers are initially deployed, an annotation is added to the router's
+service that automatically creates a
+xref:../dev_guide/secrets.adoc#service-serving-certificate-secrets[service serving certificate secret] named `router-metrics-tls`.
++
+To redeploy `router-metrics-tls` certificates manually, that service serving certificate can be triggered to be recreated by deleting the secret, removing and re-adding annotations to the router service, then redeploying the `router-metrics-tls` secret:
+
 . Remove the following annotations from the `router` service:
 +
 ----
@@ -693,15 +699,15 @@ $ oc annotate service router \
     service.alpha.openshift.io/serving-cert-signed-by-
 ----
 
-. Re-add the annotations:
+. Remove the existing `router-metrics-tls` secret.
 +
 ----
-$ oc annotate service router \
-    service.alpha.openshift.io/serving-cert-secret-name=router-certs
+$ oc delete secret router-metrics-tls
 ----
 
-. Redeploy the router:
+. Re-add the annotations:
 +
 ----
-$ oc rollout latest dc/router
+$ oc annotate service router \
+    service.alpha.openshift.io/serving-cert-secret-name=router-metrics-tls
 ----