Important changes to SSL certificate validity timeline w.e.f March 15, 2026

Important changes to SSL certificate validity timeline w.e.f March 15, 2026

Dear Clients,

This is to bring to your attention that in April, 2025, the Certification Authority Browser Forum (CA/Browser Forum) approved Ballot SC-081v3. This proposal established a detailed schedule for reducing public SSL certificate validity periods. Encompassing phased certificate lifespan reductions, this measure followed a motion proposed by Apple and endorsed by major browser vendors and certificate authorities (CAs), including Google/Chrome, Mozilla, and Sectigo.

Essentially what this mandate has done is as below:

• Starting March 15, 2026 - 199-day maximum validity period (1 renewal + 1 reissue)
• Starting March 15, 2027 - 99-day maximum validity periods (1 renewal + 3 reissues)
• Starting March 15, 2029 - 46-day maximum validity periods (1 renewal + 7 reissues)

NOTE: The above is CAB mandate, but Digicert is following differently, which can be read in the provided URL below.

• https://www.sectigo.com/blog/200-day-ssl-certificate-expiration-risk
• https://knowledge.digicert.com/alerts/public-tls-certificates-199-day-validity
• https://cabforum.org/2025/04/11/ballot-sc081v3-introduce-schedule-of-reducing-validity-and-data-reuse-periods/

Why Changes are Happening:

• Improved Security: Shorter lifespans reduce the time attackers can use compromised keys.
• Faster Revocation: Short-lived certificates offer a better alternative to Certificate Revocation Lists (CRLs), which can be unreliable.
• Compliance: Pushes the industry towards modern, automated security standards.

Meanwhile, this does NOT mean that you’ll need to purchase twice as many SSL certificates - you’ll just need to reissue (which is free) and reinstall your SSL certificate as often required. The reissues will be handled at our end till any automations are launched by the CAs regarding the frequent reissues.

Kindly note that this change has been initiated by the SSL certificate authority end, and we are currently in contact with them regarding the same.

There is no need for you to worry about the certificate validity. Internally, we will ensure that it is renewed once it expires in approximately 200 days. From your side, the certificate will remain valid for the full 1 year period corresponding to the payment you have made.

For any further clarification or assistane please feel free to get in touch with us.