Reduction in the validity of Code Signing certificates from February 2026
Starting February 24, 2026, publicly trusted Code Signing certificates issued by DigiCert will have a maximum validity of 459 days, in line with new requirements from the CA/Browser Forum.
As a DigiCert partner, we inform you of a relevant change that will impact the validity of publicly trusted Code Signing certificates.
Starting February 24, 2026, at 18:00 UTC, Code Signing certificates issued by DigiCert will have a maximum validity of 459 days, replacing the current period of up to 39 months.
The new policy applies to Code Signing certificates used with:
- Hardware tokens
- Hardware Security Modules (HSM)
- DigiCert® KeyLocker
- DigiCert® Software Trust Manager profiles configured for Public Trust Code Signing and EV Code Signing
How does this change impact?
- Until February 24, 2026, it will be possible to request Code Signing certificates with a validity of more than 459 days.
- Certificates issued after that date will have a maximum validity of 459 days, even if the original order requested a longer period.
- Pending applications issued from that date will automatically be adjusted to the new validity.
- Certificates already issued will not be affected and will maintain their original expiration date.
- In the event of reissuance after February 24, 2026, the validity will also be limited to 459 days, even if the original certificate was issued for a longer period.
While a shorter validity may require adjustments to certificate management, it also helps reduce risks and improve the resilience of digital environments
At CertiSur we recommend that organizations anticipate this change, review their certificate management processes and advance automation strategies that facilitate future renewals.
Our team is available to advise you and help you evaluate the impact of this update on your digital environments. If you have any questions, contact our support team.