AWS Certificate Manager updates default certificate validity to comply with new guidelines
News
This article announces AWS Certificate Manager's update to comply with new CA/Browser Forum guidelines on certificate validity periods.
- Public certificates now have maximum 198-day validity instead of 395 days
- Complies with CA/Browser Forum mandate effective March 15, 2026
- No customer action required; applies to all new and renewed certificates
- Existing 395-day certificates remain valid until renewal or expiration
- Auto-renewal now occurs 45 days before expiry for new certificates
- Exportable certificate pricing reduced: $7/domain (from $15), $79/wildcard (from $149)
ACM automatically implements this change with no customer intervention needed. Pricing aligns with the shorter certificate validity period.
The AWS News Feed is currently looking for gold sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.
Related articles
Apr 7
2026
2026
AWS Certificate Manager now supports native certificate search
Jun 17
2025
2025
AWS Certificate Manager introduces public certificates you can use anywhere
Jun 17
2025
2025
AWS Certificate Manager introduces exportable public SSL/TLS certificates to use anywhere
Jan 9
2024
2024
AWS Certificate Manager will discontinue WHOIS lookup for email-validated certificates
The AWS News Feed is currently looking for silver sponsors. If you want to support the AWS community and reach a large audience of AWS professionals, consider sponsoring the AWS News Feed.