{"id":3447,"date":"2026-02-01T11:52:43","date_gmt":"2026-02-01T11:52:43","guid":{"rendered":"https:\/\/certera.com\/blog\/?p=3447"},"modified":"2026-06-17T09:34:55","modified_gmt":"2026-06-17T09:34:55","slug":"ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare","status":"publish","type":"post","link":"https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/","title":{"rendered":"CA\/B Approved 47-Day SSL\/TLS Validity by 2029: Starting 199-Day in 2026"},"content":{"rendered":"\n<h2 id=\"h-the-shrinking-lifespan-of-tls-certificates\" class=\"wp-block-heading\">The Shrinking Lifespan of TLS Certificates<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Remember when SSL certificates used to last three whole years? Then came the drop to one year. Painful, right? Well&#8230; brace yourself. By 2029, your SSL\/TLS certificates will only last 47 days. Yes, just 47 days, and no, this isn\u2019t a drill, and now the certificate expires eight times faster.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This change is official. It\u2019s not speculation. It\u2019s not a tech blog rumor. <strong><em>It\u2019s CA\/B Forum approved, <\/em><\/strong><em>backed by the same group that sets the global standards for web security. And it\u2019s going to impact everyone, whether you\u2019re running a personal blog, an eCommerce empire, a small startup,<\/em> or a global enterprise. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The shorter lifespan of certificates improves security, reduces vulnerability, and promotes the adoption of automation certificate lifecycle management.<\/p>\n\n\n\n<h2 id=\"_PWGEaevpGOS9vr0Pq5aRmAw_41\" class=\"wp-block-heading\">First-Phase: 200-day SSL\/TLS Certificates effective March 2026<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Here is the confirmed phased rollout: <\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>March 15, 2026:<\/strong> Certificates capped at 200 days.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>March 15, 2027: <\/strong>Reduced further to 100 days.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>March, 15, 2029:<\/strong> Final reductions planned to just 47 days.<\/p>\n\n\n\n<h3 id=\"h-sectigo-s-timeline\" class=\"wp-block-heading\">Sectigo&#8217;s Timeline<\/h3>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>March 15, 2026<\/strong> \u2014 Sectigo will enforce the 200-day maximum validity for new public SSL\/TLS certificates. Certificates issued on\/after this date cannot exceed 200 days.<\/li>\n\n\n\n<li><strong>DCV (Domain Control Validation)<\/strong> reuse will also be aligned to <strong>200 days<\/strong> from this date. Meaning domain validations older than 200 days will not be reusable for issuance after March 15, 2026.<\/li>\n<\/ul>\n\n\n\n<h3 id=\"h-digicert-s-timeline\" class=\"wp-block-heading\">DigiCert&#8217;s Timeline<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">DigiCert tends to align its actual implementation slightly <em>ahead<\/em> or just under the CA\/B Forum maximum:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><strong>February 24, 2026<\/strong> \u2014 DigiCert will no longer issue public TLS\/SSL certificates longer than <strong>199 days<\/strong> (1 day shorter than the CA\/B Forum 200-day maximum). <strong>This is DIGICERT\u2019s effective cutoff.<\/strong><\/li>\n\n\n\n<li><strong>Certificates issued on\/after Feb 24, 2026,<\/strong> are capped at <strong>199 days<\/strong> until the next reductions.<\/li>\n<\/ul>\n\n\n\n<h3 id=\"h-important-note\" class=\"wp-block-heading\">Important Note:<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\" id=\"h-important-note\">As a reseller, our cut-off dates are 3-4 days before the CA\/s cut-off dates. <strong>Kindly note our cut-off dates:<\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\" id=\"h-important-note\"><strong>DigiCert SSL\/TLS Certificates:<\/strong>&nbsp;Feb 20, 2026<br><strong>Sectigo SSL\/TLS Certificates:<\/strong>&nbsp;March 8, 2026<\/p>\n\n\n\n<p class=\"wp-block-paragraph\" id=\"h-important-note\">Any certificate purchased or issued after these dates will have the new 199-day validity.&nbsp;<a href=\"https:\/\/www.sectigo.com\/blog\/200-day-ssl-tls-certificate-lifespans-are-less-than-a-year-away\"><\/a><\/p>\n\n\n\n<h2 id=\"h-flashback-the-road-to-shorter-lifespans\" class=\"wp-block-heading\">Flashback: The Road to Shorter Lifespans<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">If you&#8217;re wondering how we ended up staring down the barrel of a 47-day certificate lifespan, let&#8217;s rewind the tape. This didn\u2019t happen overnight. It\u2019s been a slow (but deliberate) countdown to zero. Well,\u2026 not zero, but pretty close. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Let\u2019s walk through the highlights that brought us here:<\/strong><\/p>\n\n\n\n<h3 id=\"h-pre-2015\" class=\"wp-block-heading\">Pre-2015<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">SSL\/TLS certificates lived large. Before 2015, an SSL\/TLS certificate had a <strong>5-year lifetime<\/strong>. You have to renew it after five years. But then\u2026 things changed.<\/p>\n\n\n\n<h3 id=\"h-2015-the-3-year-chop\" class=\"wp-block-heading\">2015: The 3-Year Chop<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">In 2015, the 5-year lifetime of an SSL\/TLS certificate was changed to <strong>3 years<\/strong>. The CA\/Browser (CA\/B) Forum stepped in and trimmed the maximum certificate lifespan down.<\/p>\n\n\n\n<h3 id=\"h-2018-the-2-year-lifespan\" class=\"wp-block-heading\">2018: The 2-Year lifespan<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">In 2018, the SSL\/TLS lifespan further degraded, and now it has a valid <strong>3-year<\/strong> time period after which it will expire.<\/p>\n\n\n\n<h3 id=\"h-march-2020-the-398-day-era\" class=\"wp-block-heading\">March 2020: The 398-Day Era<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">In March 2020, the lifespan dropped again, this time to <strong>398 days<\/strong> (just over 13 months).<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">That meant annual renewals became the new normal, and the industry felt it.<\/p>\n\n\n\n<h3 id=\"h-apple-wants-45-days-but-google-says-90\" class=\"wp-block-heading\">Apple Wants 45 Days, But Google Says 90<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Then Apple dropped a bomb: they proposed that certificates should last just <a href=\"https:\/\/certera.com\/blog\/apples-proposal-to-shorten-ssl-tls-certificate-lifespans-to-45-days-by-2027\/\">45 days<\/a>. Google, a bit more lenient, floated <a href=\"https:\/\/certera.com\/blog\/detailed-guide-on-rolling-of-90-day-ssl-tls-validity\/\">90 days<\/a> instead. The message was clear: automation is the future.<\/p>\n\n\n\n<h2 id=\"h-ca-b-forum-votes-the-behind-the-scenes-drama-you-didn-t-see-coming\" class=\"wp-block-heading\">CA\/B Forum Votes: The Behind-the-Scenes Drama You Didn\u2019t See Coming<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">This wasn\u2019t some overnight, backroom decision. Nope. The move to <strong>47-day<\/strong> certificates didn\u2019t just happen; it was the result of intense discussions, heated debates, and careful planning inside the CA\/Browser Forum (CA\/B).<\/p>\n\n\n\n<p class=\"quote-section wp-block-paragraph\">After the voting, they decided the maximum lifespan of new SSL\/TLS certs to just <strong>47 days<\/strong> by <strong>March 15, 2029.<\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The CA\/Browser Forum (CA\/B Forum) is an industry consortium of Certificate Authorities (CAs) and browser vendors that sets security standards and best practices for digital certificates used on the internet, especially <a href=\"https:\/\/certera.com\/\">SSL\/TLS certificates<\/a>. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Think of it like a high-stakes roundtable with the world\u2019s most powerful players in web security:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Certificate Authorities (CAs)<\/li>\n\n\n\n<li>Browser giants like Google, Apple, and Mozilla<\/li>\n\n\n\n<li>Security leaders who eat threat vectors for breakfast<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">The recent vote on shorter Certificate lifetimes passed, and the verdict was a majority in favour of it, with the votes 25-0 for the proposal and five abstentions. The 47-day revolution was officially greenlit.<\/p>\n\n\n\n<h2 id=\"h-but-why-cut-certificate-lifespans-again\" class=\"wp-block-heading\">But Why Cut Certificate Lifespans Again?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">The single-word answer is Risk. Here&#8217;s what the CA\/B Forum knew (and you should too):<\/p>\n\n\n\n<h3 id=\"h-shorter-certificate-lifespans-smaller-attack-windows\" class=\"wp-block-heading\">Shorter Certificate Lifespans = Smaller Attack Windows<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>The logic is simple but powerful:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>If a certificate gets compromised, it can now be retired faster.<\/li>\n\n\n\n<li>Short-lived certs limit the blast radius of any potential breach.<\/li>\n\n\n\n<li>You\u2019re not trusting a certificate for a year anymore, just a few weeks. That\u2019s like turning a 12-month lease into a short Airbnb stay: lower commitment, less risk.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">And with automation tools now widely available, renewals aren\u2019t the nightmare they once were. In fact, this change aligns beautifully with the <a href=\"https:\/\/certera.com\/blog\/what-is-zero-trust-security-understand-security-mode-benefits-examples\/\">Zero Trust model<\/a>, where nothing is trusted for too long, and everything must continuously prove itself.<\/p>\n\n\n\n<h2 id=\"h-the-timeline-that-matters-bookmark-this\" class=\"wp-block-heading\">The Timeline That Matters (Bookmark This!)<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">This isn\u2019t a one-and-done update. It\u2019s a strategic phase-out of long-lived SSL certificates, and it\u2019s going to change how you manage your security infrastructure. So, if you\u2019re not automating yet&#8230; you\u2019re going to feel the heat.<\/p>\n\n\n\n<figure class=\"wp-block-table\"><table class=\"has-fixed-layout\"><tbody><tr><td><strong>Timeframe (Certificates Issued After) &nbsp;<\/strong><\/td><td><strong>Maximum Certificate Validity &nbsp;<\/strong><\/td><td><strong>Domain Control Validation (DCV) Re-Use Period &nbsp;<\/strong><\/td><td><strong>Impact &nbsp;<\/strong><\/td><\/tr><tr><td>Until Feb, 2026&nbsp;<\/td><td>398 days &nbsp;<\/td><td>398 days &nbsp;<\/td><td>&nbsp;<\/td><\/tr><tr><td>March 15, 2026 &nbsp;<\/td><td>200 days &nbsp;<\/td><td>200 days &nbsp;<\/td><td>2X today\u2019s workload (Renewals 2X per Year) &nbsp;<\/td><\/tr><tr><td>March 15, 2027 &nbsp;<\/td><td>100 days &nbsp;<\/td><td>100 days &nbsp;<\/td><td>4X today\u2019s workload (Renewals 4X per Year) &nbsp;<\/td><\/tr><tr><td>March 15, 2029 &nbsp;<\/td><td>47 days &nbsp;<\/td><td>10 days &nbsp;<\/td><td>8X today\u2019s workload (Renewals 8 \u2013 12X per Year) &nbsp;<\/td><\/tr><\/tbody><\/table><\/figure>\n\n\n\n<h2 id=\"h-how-major-cas-like-digicert-and-sectigo-are-responding-pay-attention\" class=\"wp-block-heading\">How Major CAs Like DigiCert and Sectigo Are Responding (Pay Attention)?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Let\u2019s be honest\u2026 47-day certificates sound like a nightmare unless you\u2019ve got the right tools on your side. The good news? The biggest Certificate Authorities (CAs) are already ahead of the curve. Here\u2019s how DigiCert and Sectigo are preparing you for the future.<\/p>\n\n\n\n<h3 id=\"h-digicert-automate-everything-stress-nothing\" class=\"wp-block-heading\">DigiCert: Automate Everything, Stress Nothing<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">DigiCert isn\u2019t sweating the 90-day or even 47-day revolution. Why? Because they\u2019ve been preparing for this moment for years with an automation-first mindset.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Here\u2019s what they\u2019re doing:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><a href=\"https:\/\/certera.com\/solutions\/digicert-trust-lifecycle-manager\">Trust Lifecycle Manager<\/a> handles issuance, renewal, and revocation so your team doesn\u2019t burn out clicking &#8220;Renew&#8221; every few weeks.<\/li>\n\n\n\n<li>Already supports 90-day certs, with full support for 47-day expected well before 2029.<\/li>\n\n\n\n<li>Built for enterprises scaling across hybrid cloud, on-prem, and multi-region environments.<\/li>\n<\/ul>\n\n\n\n<h3 id=\"h-sectigo-get-full-visibility-over-all-your-digital-nbsp-certificates\" class=\"wp-block-heading\">Sectigo: Get Full Visibility over all your Digital&nbsp;Certificates<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Sectigo also follows the path of DigiCert. Sectigo knows shorter lifespans mean more churn, so they\u2019re doubling down on automation, too.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><a href=\"https:\/\/certera.com\/solutions\/sectigo-certificate-manager\">Sectigo Certificate Manager (SCM)<\/a> is a beast of a tool that simplifies cert management across DevOps, IoT, and hybrid cloud.<\/li>\n\n\n\n<li>90-day certs? Already handled.<\/li>\n\n\n\n<li>47-day support? Actively being baked in, with seamless rotation mechanisms in the works.<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">This change is not optional. By 2029, certs will last just 47 days. That means 8\u201312 renewals every year.<\/p>\n\n\n\n<h2 id=\"h-why-this-change-is-a-big-deal\" class=\"wp-block-heading\">Why This Change Is a Big Deal<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">You are running your only business, and your site is down. Why? You forgot to renew the SSL certificate. Google now marks it as \u201cNot Secure.\u201d Customers bounce, Sales plummet, and your SEO rankings? Crushed.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Now&#8230; imagine that exact same scenario happening every 47 days. That\u2019s not just a headache that\u2019s a recurring business nightmare.<\/p>\n\n\n\n<h3 id=\"h-automation-is-no-longer-an-option-it-s-a-necessity\" class=\"wp-block-heading\">Automation Is No Longer an Option; it&#8217;s a Necessity<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">If you\u2019re not using automation yet, the clock\u2019s ticking literally. <strong>Because by 2029, you\u2019ll need a system that can:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Detect expiration ahead of time<\/li>\n\n\n\n<li>Renew certs automatically<\/li>\n\n\n\n<li>Re-validate domains every 10 days (yes, 10 days)<\/li>\n\n\n\n<li>Notify you before anything breaks<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">This shift isn\u2019t just about security. It\u2019s about staying online, staying trusted, and staying ahead.<\/p>\n\n\n\n<h2 id=\"h-this-will-affect-everyone-from-startups-to-enterprises\" class=\"wp-block-heading\">This Will Affect Everyone \u2014 From Startups to Enterprises<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Whether you\u2019re a solo dev hustling on a side project, a SaaS startup, or a Fortune 500 bank juggling hybrid infrastructure across data centres and the cloud. This change is coming for you. No one\u2019s immune. Not the little guys. Not the Giants. <\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>If your website or app relies on HTTPS, you\u2019re on the clock. It\u2019s time to rethink how you handle certificates, or risk the fallout:<\/strong><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Downtime<\/li>\n\n\n\n<li>Lost Customers<\/li>\n\n\n\n<li>Security Gaps<\/li>\n\n\n\n<li>SEO Penalties<\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">Smart organisations are already automating and <a href=\"https:\/\/certera.com\/automated-ssl-certificates\">adopting ACME<\/a>.<\/p>\n\n\n\n<h2 id=\"h-the-smarter-move-automate-your-certificates\" class=\"wp-block-heading\">The Smarter Move: Automate Your Certificates<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Let\u2019s get one thing straight: <a href=\"https:\/\/certera.com\/blog\/manual-vs-automated-ssl-certificate-management-why-automation-is-must\/\">Manual certificate management<\/a> is soon dead. If your current SSL renewal process involves spreadsheets, calendar reminders, or that one person on your team who &#8220;just remembers&#8221; you&#8217;re already on borrowed time.<\/p>\n\n\n\n<h3 id=\"h-why-manual-scalable\" class=\"wp-block-heading\">Why Manual \u2260 Scalable<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Think about it. With 47-day certificates and 10-day DCV cycles, you&#8217;re looking at:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>8 to 12 Renewals per year (per domain!)<\/li>\n\n\n\n<li>Multiple Domain Validations<\/li>\n\n\n\n<li>Coordinated Re-issuance across dozens, maybe hundreds of certs<\/li>\n\n\n\n<li>All with Zero Room for Error<\/li>\n<\/ul>\n\n\n\n<h2 id=\"h-the-only-way-forward-automated-certificate-management-systems\" class=\"wp-block-heading\">The Only Way Forward: Automated Certificate Management Systems<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">If you&#8217;re serious about staying secure online, this is the move:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Auto-renewals with no downtime<\/li>\n\n\n\n<li>Auto-validation and compliance with CA\/B rules<\/li>\n\n\n\n<li>Visibility across all certs in one place<\/li>\n\n\n\n<li>Easy integration with your DevOps pipelines, CI\/CD, and cloud platforms<\/li>\n<\/ul>\n\n\n\n<h2 id=\"h-tools-to-look-at-right-now-before-it-s-too-late\" class=\"wp-block-heading\">Tools to Look At Right Now (Before It\u2019s Too Late)<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">Let\u2019s make this simple. If you want to survive the 90-day and eventually 47-day cert renewal world, you need tools that do the heavy lifting. And not just any tools\u2026 the right ones.<\/p>\n\n\n\n<h3 id=\"h-digicert-trust-lifecycle-manager\" class=\"wp-block-heading\">DigiCert Trust Lifecycle Manager<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">From a single place, you can control your whole certificate management process.<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Centralized certificate visibility \u2014 no more scattered certs<\/li>\n\n\n\n<li>Proactive outage prevention \u2014 alerts before anything breaks<\/li>\n\n\n\n<li>Support integration with cloud, containers, and DevOps tools like Jenkins and Kubernetes<\/li>\n<\/ul>\n\n\n\n<h3 id=\"h-sectigo-certificate-manager-scm\" class=\"wp-block-heading\">Sectigo Certificate Manager (SCM)<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Another top alternative is Sectigo Certificate Manager which gives you:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Auto-discovery + auto-renewal \u2014 no manual touchpoints<\/li>\n\n\n\n<li>Works seamlessly across public\/private CAs, mobile, servers, IoT<\/li>\n\n\n\n<li>Built for compliance-heavy industries like finance, healthcare, and government<\/li>\n<\/ul>\n\n\n\n<p class=\"quote-section wp-block-paragraph\">Got confused? Don&#8217;t worry, our PKI experts are here to help you choose the perfect <a href=\"https:\/\/certera.com\/solutions\/certificate-lifecycle-management\">automated certificate manager<\/a> for your business as per your needs. Certera offers multi-vendor PKI Solutions at affordable rates for small to enterprise businesses. Browse our <a href=\"https:\/\/certera.com\/solutions\/pki-solutions\">Enterprise-grade PKI Solutions<\/a> and automate yourself!<\/p>\n\n\n\n<h2 id=\"h-still-unsure-just-look-at-the-outage-stats\" class=\"wp-block-heading\">Still Unsure? Just Look at the Outage Stats<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">If you&#8217;re thinking, &#8220;It can\u2019t be that bad if I miss a renewal&#8230;&#8221; Think again. The numbers and the brands say otherwise.<\/p>\n\n\n\n<h3 id=\"h-linkedin-2018\" class=\"wp-block-heading\">LinkedIn (2018)<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">A missed cert renewal. Result? Parts of the platform went dark. Millions affected.<\/p>\n\n\n\n<h3 id=\"h-microsoft-teams-2020\" class=\"wp-block-heading\">Microsoft Teams (2020)<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">One expired certificate = multi-hour outage. Entire companies lost productivity worldwide.<\/p>\n\n\n\n<h3 id=\"h-instagram-amp-dropbox\" class=\"wp-block-heading\">Instagram &amp; Dropbox<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Short outages. Missed certificate rotations. Big reputational hits.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Each incident? Millions are lost in downtime, user trust, and support costs. And those were with longer certificate lifespans. Now imagine playing that same risky game&#8230; every 47 days.<\/p>\n\n\n\n<h2 id=\"h-what-should-you-do-right-now-how-to-prepare\" class=\"wp-block-heading\">What Should You Do Right Now? How to Prepare?<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">This isn\u2019t something you \u201cget to later.\u201d Every day you delay = higher risk of outages, SEO crashes, and angry customers. So here\u2019s your no-fluff, action-packed playbook:<\/p>\n\n\n\n<h3 id=\"h-step-1-audit-your-current-certificates\" class=\"wp-block-heading\">Step 1: Audit Your Current Certificates<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Create a list of every active cert your organisation is currently using. Note expiration dates and the Map where each one is deployed (apps, servers, APIs). This is your baseline. Without it, you\u2019re flying blind.<\/p>\n\n\n\n<h3 id=\"h-step-2-plan-your-transition\" class=\"wp-block-heading\">Step 2: Plan Your Transition<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">90-day and 47-day certs are coming fast. You need a transition plan. Identify which certs need to move to shorter lifespans. Choose the right automation tools (like DigiCert or Sectigo). Look for low-hanging fruit, start with the certs that renew most often.<\/p>\n\n\n\n<h3 id=\"h-step-3-deploy-an-automated-certificate-management-system-acms\" class=\"wp-block-heading\">Step 3: Deploy an Automated Certificate Management System (ACMS)<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Manual cert renewal is dead. <a href=\"https:\/\/certera.com\/acme-certificates\/sectigo-acme-ssl\">Automation<\/a> is your lifeline. Set it once. Let it work while you sleep. It will do:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Auto-renewals<\/li>\n\n\n\n<li>Auto-revocations<\/li>\n\n\n\n<li>Auto-deployments<\/li>\n<\/ul>\n\n\n\n<h3 id=\"h-step-4-educate-your-team\" class=\"wp-block-heading\">Step 4: Educate Your Team<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Cert management isn\u2019t just an IT problem; it touches devs, ops, security, and compliance. Make sure your team knows: shorter certs = too much trouble<strong>. <\/strong>Follow these:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>Run training sessions<\/li>\n\n\n\n<li>Update your CI\/CD pipelines<\/li>\n\n\n\n<li>Test in staging before it hits the prod<\/li>\n<\/ul>\n\n\n\n<h2 id=\"h-another-key-update-code-signing-validity-changes-2026\" class=\"wp-block-heading\">Another Key Update: Code Signing Validity Changes 2026<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">From March 1,&nbsp;2026,&nbsp;Code Signing&nbsp;certificates will have a maximum&nbsp;<em>validity<\/em>&nbsp;period reduced from about 3 years to 460 days (about 15 months).<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>Our Cut-Off Date: <\/strong>Feb 15, 2026<\/p>\n\n\n\n<h2 id=\"h-conclusion\" class=\"wp-block-heading\">Conclusion<\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">The SSL game has changed forever. From 398 days to just 47, the future of certificate management is all about automation, speed, and zero-trust security. Ignore it, and you&#8217;re one missed renewal away from a brand-damaging outage. Embrace it, and you&#8217;ll stay ahead of compliance, attackers, and your competition.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">Need help adapting to the new SSL world? Contact us. Whether you\u2019re a startup, enterprise, or DevOps team, we offer <a href=\"https:\/\/certera.com\/services\/consulting-services\">consulting services<\/a> to audit your current setup, implement automation, and future-proof your certificate strategy.<\/p>\n\n\n\n<h2 id=\"h-frequently-asked-questions-faqs\" class=\"wp-block-heading\">Frequently Asked Questions (FAQs)<\/h2>\n\n\n\n<h3 id=\"h-why-are-ssl-tls-certificate-lifespans-being-reduced\" class=\"wp-block-heading\">Why are SSL\/TLS certificate lifespans being reduced?<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Shorter lifespans improve security by minimizing the risk window in case a certificate is compromised. They also reduce reliance on revocation mechanisms, which are often unreliable.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>When will the new 90-day SSL certificate lifespan be enforced?<\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The CA\/Browser Forum has approved the change, and it&#8217;s set to come into effect by early 2024. Further reductions to 47 days are expected to become standard by 2029.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong>What is the CA\/Browser Forum?<\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The CA\/Browser Forum (CA\/B Forum) is a voluntary group of Certificate Authorities (like DigiCert, and Sectigo) and browser vendors (like Google, Apple, and Mozilla) who define industry rules for SSL\/TLS certificates.<\/p>\n\n\n\n<h3 id=\"h-what-happens-if-i-don-t-update-my-certificate-within-the-new-47-day-cycle\" class=\"wp-block-heading\">What happens if I don\u2019t update my certificate within the new 47-day cycle?<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Your website will show a \u201cNot Secure\u201d warning, and users may be blocked from accessing your site. This could lead to lost traffic, data breaches, or business outages.<\/p>\n\n\n\n<h3 id=\"h-do-all-cas-support-this-change\" class=\"wp-block-heading\">Do all CAs support this Change?<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Yes. Major CAs like Sectigo and DigiCert have confirmed support for this change and are actively helping customers transition to automated certificate management.<\/p>\n\n\n\n<h3 id=\"h-what-is-acme-and-why-is-it-important\" class=\"wp-block-heading\">What is ACME, and why is it important?<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><a href=\"https:\/\/certera.com\/blog\/what-is-acme-protocol-how-does-it-work\/\">ACME (Automatic Certificate Management Environment)<\/a> is a protocol used to automate SSL\/TLS certificate issuance and renewal. It\u2019s widely used by Let&#8217;s Encrypt and supported by most enterprise CAs today.<\/p>\n\n\n\n<h3 id=\"h-what-are-the-best-tools-for-automating-certificate-management\" class=\"wp-block-heading\">What are the Best Tools for Automating Certificate Management?<\/h3>\n\n\n\n<p class=\"wp-block-paragraph\">Enterprise-grade solutions include:<\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li>DigiCert Trust Lifecycle Manager<\/li>\n\n\n\n<li>Sectigo Certificate Manager (SCM)<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>The Shrinking Lifespan of TLS Certificates Remember when SSL certificates used to last three whole years? Then came the drop to one year. Painful, right? Well&#8230; brace yourself. By 2029, your SSL\/TLS certificates will only last 47 days. Yes, just 47 days, and no, this isn\u2019t a drill, and now the certificate expires eight times<span class=\"morelink d-block mt-3\"><a href=\"https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/\">Read More<\/a><\/span><\/p>\n","protected":false},"author":1,"featured_media":3450,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[5],"tags":[663,662,661],"class_list":["post-3447","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-ssl-certificate","tag-47-days-ssl","tag-47-day-certificate-lifecycle","tag-shorter-lifespan-of-ssl-certificate","entry"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.9 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>SSL\/TLS Certificate Validity Limits: 200-Day in 2026 and 47-Day by 2029<\/title>\n<meta name=\"description\" content=\"New SSL\/TLS certificates will be limited to 47 days, and 10 days for DCVs. Learn key dates, cand how to prepare for shorter SSL validation.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"SSL\/TLS Certificate Validity Limits: 200-Day in 2026 and 47-Day by 2029\" \/>\n<meta property=\"og:description\" content=\"New SSL\/TLS certificates will be limited to 47 days, and 10 days for DCVs. Learn key dates, cand how to prepare for shorter SSL validation.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/\" \/>\n<meta property=\"og:site_name\" content=\"EncryptedFence by Certera - Web &amp; Cyber Security Blog\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/certeraLLC\/\" \/>\n<meta property=\"article:published_time\" content=\"2026-02-01T11:52:43+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-06-17T09:34:55+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/04\/47-day-ssl-validity-period.webp\" \/>\n\t<meta property=\"og:image:width\" content=\"960\" \/>\n\t<meta property=\"og:image:height\" content=\"620\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Janki Mehta\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@certera_llc\" \/>\n<meta name=\"twitter:site\" content=\"@certera_llc\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Janki Mehta\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"11 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\\\/\"},\"author\":{\"name\":\"Janki Mehta\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/person\\\/e5a476aa90d9e02260ebfe4b0bf046b7\"},\"headline\":\"CA\\\/B Approved 47-Day SSL\\\/TLS Validity by 2029: Starting 199-Day in 2026\",\"datePublished\":\"2026-02-01T11:52:43+00:00\",\"dateModified\":\"2026-06-17T09:34:55+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\\\/\"},\"wordCount\":2371,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/04\\\/47-day-ssl-validity-period.webp\",\"keywords\":[\"47 days SSL\",\"47-day Certificate Lifecycle\",\"Shorter Lifespan of SSL Certificate\"],\"articleSection\":[\"SSL Certificate\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/certera.com\\\/blog\\\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\\\/#respond\"]}],\"copyrightYear\":\"2026\",\"copyrightHolder\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\"}},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\\\/\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\\\/\",\"name\":\"SSL\\\/TLS Certificate Validity Limits: 200-Day in 2026 and 47-Day by 2029\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/04\\\/47-day-ssl-validity-period.webp\",\"datePublished\":\"2026-02-01T11:52:43+00:00\",\"dateModified\":\"2026-06-17T09:34:55+00:00\",\"description\":\"New SSL\\\/TLS certificates will be limited to 47 days, and 10 days for DCVs. Learn key dates, cand how to prepare for shorter SSL validation.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/certera.com\\\/blog\\\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\\\/#primaryimage\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/04\\\/47-day-ssl-validity-period.webp\",\"contentUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2025\\\/04\\\/47-day-ssl-validity-period.webp\",\"width\":960,\"height\":620,\"caption\":\"47-Day Lifespans Coming by 2029\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/certera.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"CA\\\/B Approved 47-Day SSL\\\/TLS Validity by 2029: Starting 199-Day in 2026\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/\",\"name\":\"EncryptedFence by Certera - Web & Cyber Security Blog\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\"},\"alternateName\":\"Certera's EncryptedFence Blog\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/certera.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#organization\",\"name\":\"Certera\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/08\\\/logo-encryptedfence.svg\",\"contentUrl\":\"https:\\\/\\\/certera.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/08\\\/logo-encryptedfence.svg\",\"caption\":\"Certera\"},\"image\":{\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/certeraLLC\\\/\",\"https:\\\/\\\/x.com\\\/certera_llc\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/certera-llc\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/certera.com\\\/blog\\\/#\\\/schema\\\/person\\\/e5a476aa90d9e02260ebfe4b0bf046b7\",\"name\":\"Janki Mehta\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g\",\"caption\":\"Janki Mehta\"},\"description\":\"Janki Mehta is a passionate Cyber-Security Enthusiast who keenly monitors the latest developments in the Web\\\/Cyber Security industry. She puts her knowledge into practice and helps web users by arming them with the necessary security measures to stay safe in the digital world.\",\"sameAs\":[\"https:\\\/\\\/certerassl.com\\\/\"],\"url\":\"https:\\\/\\\/certera.com\\\/blog\\\/author\\\/certerabguser\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"SSL\/TLS Certificate Validity Limits: 200-Day in 2026 and 47-Day by 2029","description":"New SSL\/TLS certificates will be limited to 47 days, and 10 days for DCVs. Learn key dates, cand how to prepare for shorter SSL validation.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/","og_locale":"en_US","og_type":"article","og_title":"SSL\/TLS Certificate Validity Limits: 200-Day in 2026 and 47-Day by 2029","og_description":"New SSL\/TLS certificates will be limited to 47 days, and 10 days for DCVs. Learn key dates, cand how to prepare for shorter SSL validation.","og_url":"https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/","og_site_name":"EncryptedFence by Certera - Web &amp; Cyber Security Blog","article_publisher":"https:\/\/www.facebook.com\/certeraLLC\/","article_published_time":"2026-02-01T11:52:43+00:00","article_modified_time":"2026-06-17T09:34:55+00:00","og_image":[{"width":960,"height":620,"url":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/04\/47-day-ssl-validity-period.webp","type":"image\/jpeg"}],"author":"Janki Mehta","twitter_card":"summary_large_image","twitter_creator":"@certera_llc","twitter_site":"@certera_llc","twitter_misc":{"Written by":"Janki Mehta","Est. reading time":"11 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/#article","isPartOf":{"@id":"https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/"},"author":{"name":"Janki Mehta","@id":"https:\/\/certera.com\/blog\/#\/schema\/person\/e5a476aa90d9e02260ebfe4b0bf046b7"},"headline":"CA\/B Approved 47-Day SSL\/TLS Validity by 2029: Starting 199-Day in 2026","datePublished":"2026-02-01T11:52:43+00:00","dateModified":"2026-06-17T09:34:55+00:00","mainEntityOfPage":{"@id":"https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/"},"wordCount":2371,"commentCount":0,"publisher":{"@id":"https:\/\/certera.com\/blog\/#organization"},"image":{"@id":"https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/#primaryimage"},"thumbnailUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/04\/47-day-ssl-validity-period.webp","keywords":["47 days SSL","47-day Certificate Lifecycle","Shorter Lifespan of SSL Certificate"],"articleSection":["SSL Certificate"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/#respond"]}],"copyrightYear":"2026","copyrightHolder":{"@id":"https:\/\/certera.com\/blog\/#organization"}},{"@type":"WebPage","@id":"https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/","url":"https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/","name":"SSL\/TLS Certificate Validity Limits: 200-Day in 2026 and 47-Day by 2029","isPartOf":{"@id":"https:\/\/certera.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/#primaryimage"},"image":{"@id":"https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/#primaryimage"},"thumbnailUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/04\/47-day-ssl-validity-period.webp","datePublished":"2026-02-01T11:52:43+00:00","dateModified":"2026-06-17T09:34:55+00:00","description":"New SSL\/TLS certificates will be limited to 47 days, and 10 days for DCVs. Learn key dates, cand how to prepare for shorter SSL validation.","breadcrumb":{"@id":"https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/#primaryimage","url":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/04\/47-day-ssl-validity-period.webp","contentUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2025\/04\/47-day-ssl-validity-period.webp","width":960,"height":620,"caption":"47-Day Lifespans Coming by 2029"},{"@type":"BreadcrumbList","@id":"https:\/\/certera.com\/blog\/ca-b-approved-47-day-ssl-tls-validity-by-2029-how-to-prepare\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/certera.com\/blog\/"},{"@type":"ListItem","position":2,"name":"CA\/B Approved 47-Day SSL\/TLS Validity by 2029: Starting 199-Day in 2026"}]},{"@type":"WebSite","@id":"https:\/\/certera.com\/blog\/#website","url":"https:\/\/certera.com\/blog\/","name":"EncryptedFence by Certera - Web & Cyber Security Blog","description":"","publisher":{"@id":"https:\/\/certera.com\/blog\/#organization"},"alternateName":"Certera's EncryptedFence Blog","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/certera.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/certera.com\/blog\/#organization","name":"Certera","url":"https:\/\/certera.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/certera.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2023\/08\/logo-encryptedfence.svg","contentUrl":"https:\/\/certera.com\/blog\/wp-content\/uploads\/2023\/08\/logo-encryptedfence.svg","caption":"Certera"},"image":{"@id":"https:\/\/certera.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/certeraLLC\/","https:\/\/x.com\/certera_llc","https:\/\/www.linkedin.com\/company\/certera-llc\/"]},{"@type":"Person","@id":"https:\/\/certera.com\/blog\/#\/schema\/person\/e5a476aa90d9e02260ebfe4b0bf046b7","name":"Janki Mehta","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/1fba817ef81065f1393461fc3a0d85c40f2cc826919819ea4df4b12d76566e62?s=96&d=https%3A%2F%2Fcertera.com%2Fblog%2Fwp-content%2Fuploads%2F2023%2F02%2Fhttps-vs-sftp-jpg.webp&r=g","caption":"Janki Mehta"},"description":"Janki Mehta is a passionate Cyber-Security Enthusiast who keenly monitors the latest developments in the Web\/Cyber Security industry. She puts her knowledge into practice and helps web users by arming them with the necessary security measures to stay safe in the digital world.","sameAs":["https:\/\/certerassl.com\/"],"url":"https:\/\/certera.com\/blog\/author\/certerabguser\/"}]}},"_links":{"self":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts\/3447","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/comments?post=3447"}],"version-history":[{"count":7,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts\/3447\/revisions"}],"predecessor-version":[{"id":4717,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/posts\/3447\/revisions\/4717"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/media\/3450"}],"wp:attachment":[{"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/media?parent=3447"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/categories?post=3447"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/certera.com\/blog\/wp-json\/wp\/v2\/tags?post=3447"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}