There are two modes of encryption supported by simple SAMLphp.
Instead, one can update the SPs with the new fingerprint, and only update the certificate after every SP is updated.
This corresponds to the SPName Qualifier in the SAML 2.0 specification.
It allows to give subjects a SP specific namespace.
This option is rarely used, so if you don't need it, leave it out.