Abstract: In order to eliminate the risk of a single CA (Certificate Authority) and make certificate revocation and query efficient, a block-tree revocable certificate management mechanism is proposed. This mechanism used the chameleon Hash function to implement the addition and revocation of certificates with only a tree structure. At the same time, the block-tree was a balanced search tree, which implemented the efficient verification and query of certificates. The paper carried out system modeling and safety proof of the mechanism, and carried out prototype verification. Experiments and analysis show that the mechanism occupies less space, and the query, addition and revocation of certificates are logarithmic time complexity. At the same time, the distributed feature of this mechanism eliminates the risk of centralized organization.