What is the current maximum validity period of an SSL certificate?
Since March 2026, the maximum technical lifespan of an SSL certificate has been drastically shortened to 200 days. This means that a certificate expires after just over six months. While we were previously accustomed to an annual cycle (398 days), browsers like Chrome and Safari now enforce a much faster rotation. Certificates valid for longer than these 200 days are no longer trusted by browsers and result in a security warning for your visitors.
Why are these periods getting shorter and shorter?
This acceleration is a deliberate choice by browser manufacturers to increase digital security. By shortening the lifespan, new encryption standards can be implemented more quickly and outdated, insecure methods can be filtered out of the ecosystem more quickly. A shorter cycle also limits the time during which a potentially leaked security key can be misused. It represents a shift from static security to a dynamic model that responds more quickly to modern threats.
What is the roadmap for the coming years?
The current move to 200 days is just the beginning of a predetermined roadmap. The industry is aiming for an even shorter renewal frequency to maximise security. According to current planning, the maximum validity period will be further reduced to 100 days in March 2027, ultimately reaching a standard of just 47 days in March 2029. The traditional "annual renewal" will thus be a thing of the past.
What are the consequences if I miss an expiration?
Because the intervals between renewals are becoming increasingly shorter, the risk of errors increases. As soon as a certificate expires, the connection to your website is immediately marked as insecure. This leads to an immediate block by browsers, which not only damages visitor confidence but also has a direct impact on your accessibility and search engine ranking. Monitoring these shorter cycles has become essential to ensure the continuity of your online presence.