The CA/Browser Forum has passed Ballot SC081v3, reducing the maximum validity for publicly trusted SSL/TLS certificates.
The Deadline:
Starting March 15, 2026, the longest validity for any new SSL certificate will be 200 days. Major Certificate Authorities (CAs) are implementing this change even earlier, effectively limiting new certificates to 199 days.
When This Affects You:
| Certificate Authority | Adjustment Date | New Max Validity |
| Sectigo | March 12, 2026 | 199 days |
| DigiCert | February 24, 2026 | 199 days |
| GlobalSign | March 14, 2026 | 199 days |
| GeoTrust | February 24, 2026 | 199 days |
| Comodo | March 15, 2026 | 199 days |
| Thawte | March 15, 2026 | 199 days |
| eMudhra | March 15, 2026 | 199 days |
What This Means:
- Current Certificates: Remain valid until their original expiration date. No action needed.
- New/Renewed Certificates: Any certificate issued, renewed, or reissued after the CA-specific dates above will be valid for a maximum of 199 days.
Your Action Plan:
- Audit: Check your current certificate expiration dates.
- Plan: If your certificates expire in early 2026, consider renewing before the adjustment date to secure a longer validity for the last time.
- Prepare: Start planning for shorter renewal cycles.
Need Assistance?
At EasySSL, we’re here to help. Visit www.easyssl.lk for more information or to contact our support team.
The EasySSL Team