The CA/Browser Forum has announced new industry requirements that shorten the maximum validity of SSL/TLS certificates. This article explains what is changing, when, and what it means for the certificates you purchase through Exact Hosting.
What is changing
Starting February 24, 2026, all newly issued SSL/TLS certificates will have a maximum validity of 199 days, reduced from the current 397 days. In addition, the length of time previously completed domain and organization validations can be reused will be shortened.
Note: You will continue to purchase one-year SSL/TLS certificates exactly as you do today. The change is in how the one-year purchase is delivered, not in the price or term you pay for.
What this means for your SSL/TLS certificates
To make the transition as seamless as possible:
- You will still buy one-year certificates. The purchase term does not change.
- Each certificate is issued with a 199-day validity period. This is the new industry maximum.
- Automatic reissuance covers the rest of the year. When the certificate expires after 199 days, it is automatically reissued. The reissued certificate is emailed to the end user by the SSL provider with a validity equal to the remaining time on the one-year purchase (166 or 167 days).
- You must reinstall the reissued certificate. After reissuance, the new certificate must be installed on your server.
This process ensures you continue to receive the full one-year value of your certificate purchase while complying with the new industry standards.
How this affects the certificate lifecycle
- Requests pending on or after February 24, 2026. These will follow the new 199-day issuance and automatic reissuance process.
- Plan ahead for the longest pre-change validity. Place orders well before February 24 and make sure all domain and organization validation requirements are up to date.
- Certificates issued before February 24, 2026. These are not affected and remain valid until their original expiration date.
Reduced validation reuse periods
Validation reuse periods determine how long previously completed validations can be reused when a certificate is reissued. As of February 24, 2026:
Validation type | Previous reuse period | New reuse period |
|---|---|---|
Organization Validation (OV) | 825 days | 397 days |
Domain Validation (DV) | 397 days | 199 days |
Keeping your validation information current will help prevent delays during certificate issuance and reissuance.
Next steps
- Review upcoming certificate renewals. Identify any certificates expiring close to or after February 24, 2026 and plan for the shorter validity cycle.
- Confirm validation details are current. Update domain and organization records ahead of any renewal to avoid delays.
- Prepare for reissuance. Make sure the end user listed on your certificate account can receive and act on the reissuance email each cycle.
Additional resources
Questions? Contact Exact Hosting Support.
Related articles
- Your Free SSL Certificate (AutoSSL) — how the free auto-renewing certificate works
- Renewing & Troubleshooting Your SSL Certificate — renewal and troubleshooting
How helpful was this article?
Thanks for your feedback!
Do you still need help? If so please submit a request here.