GENCERT gets the ACF00176 message:

ACF00176 Duplicate certificate detected - logonid.suffix

Certificates are stored in the ACF2 database with a record id of logonid.suffix where logonid is the owner of the certificate.

Certificates owned by the same logonid cannot have the same SUBJDN, ISSUERDN and SERIAL number otherwise the 'ACF00176 Duplicate certificate detected - logonid.suffix' message will result.

The resolution to this error depends on why a duplicate certificate is attempting to be generated. Some common reasons and resolutions are:

• If the certificate needs to be renewed while keeping the public/private keypair the same, use the GENREQ or RENEW command on the expiring certificate instead of trying to generate a new certificate. GENREQ is for externally signed certificates and RENEW is for internally signed certificates.
• If the certificate needs to be re-generated identically for a renewal with a new private/public keypair, use the REKEY and ROLLOVER process instead of GENCERT.
• If the certificate specified in the error message logonid.suffix was generated in error (due to testing or a misconfiguration) and the certificate generation process needs to start over, the certificate generated in error will need to be DELETED before a GENCERT of the same certificate can take place.  

For more information, see the following ACF2 documentation:

ACF00176 message

Renew Certificates Signed by a Certificate Authority