Shortening the Validity of TLS Certificates Has Been Voted On

(4/16/2025) Certificate authorities will gradually shorten the maximum validity of HTTPS certificates. It will start next year, and by 2029, their lifespan will be reduced to just 47 days, which aims to increase the security and flexibility of the TLS ecosystem.

Based on a proposal from Apple, supported by other major companies like Google and Mozilla, the validity of HTTPS certificates will be shortened over the coming years. Currently, certificates have a maximum validity of 398 days, but starting from 2024, this period will be gradually shortened.

The shortening plan is as follows:
From March 15, 2026, the maximum validity of certificates will be 200 days,
from March 15, 2027, the maximum validity of certificates will be 100 days,
and from March 15, 2029, the maximum validity of certificates will be 47 days.

The goal is that by 2029, the maximum validity of certificates will be only 47 days. This change is intended to help increase security, enable faster deployment of new technologies, and respond more flexibly to potential issues with compromised keys or certificates.

SSLmarket Has a Solution

Website operators will need to prepare for more frequent certificate renewals, which require automation. We have long offered our customers ACME completely for free. For more complex cases and corporate environments, we recommend Trust Lifecycle Manager from DigiCert, which is the best choice for automating the PKI ecosystem.