[Ger]Brief information for administrators. Browser manufacturers and Certificate Authorities (CAs) have decided to shorten the lifespan of TLS server certificates from 13 months to 47 days. However, there is a transition period for this change until 2029, during which the validity period of a TLS certificate will be gradually reduced.
Some time ago, Apple made a proposal to shorten the lifespan of TLS server certificates from 398 days to 47 days. This proposal was accepted by the members of the CA/Browser Forum on April 13, 2025. The timetable for the shortening provides for the following transition periods:
- March 15, 2026: Newly issued certificates, including their Domain Control Validation (DCV), must be renewed every 200 days.
- March 15, 2027: The lifetime is reduced to 100 days.
- March 15, 2029: New SSL/TLS certificates will be limited to 47 days and DCVs (Domain Control Verification) to 10 days.
Further details may be read at The Register or at Bleeping Computer.
