Let's Encrypt to Shorten Certificate Lifespan to 45 Days by 2028

Let's Encrypt has announced that they will reduce the lifespan of certificates from 90 days to 45 days by February 2028, one year ahead of the CA/Browser Forum's mandate. This reduction in duration is presented as an acknowledgment that the revocation infrastructure is flawed, and the industry has opted to shorten certificate lifespans so that compromised certificates expire more quickly. The post also mentions that the reuse of authorization will be reduced from 30 days to 7 hours, requiring proof of domain ownership for nearly every certificate request.