Some of the directives apply to responders, which are tied to certificates, of which you can have multiple per vhost. But the directives apply to all certificates used by the vhost. SSLStaplingForceURL is the most likely concern AFAIK, and even that would be a rare issue since overriding the responder URL is uncommon and multiple certificates per vhost is uncommon. http://httpd.apache.org/docs/trunk/mod/mod_ssl.html#sslstaplingforceurl I don't think this is a present concern.