Let's Encrypt has rolled out short-lived certificates, valid for less than a week, marking a significant shift in the certificate landscape. With a maximum validity of just 6 days, this move anticipates a broader industry trend where, by 2029, all certificates will have a maximum lifespan of 47 days. The rollout is part of Let's Encrypt's mission to push the boundaries of certificate usage and security. To obtain a short-lived certificate, you need to specify the short-lived certificate profile when making a request. For example, using the command line tool acme.sh, you can issue a certificate with the command: `acme.sh --issue --dns dns_cf -d six-days.scotthelme.co.uk --force --keylength ec-256 --server letsencrypt --cert-profile shortlived`. The article includes a specific example of a certificate issued with a validity period from November 15 to November 22, 2025. Let's Encrypt isn't alone in offering short-lived certificates. Google Trust Services (GTS) also provides this option with added flexibility, allowing users to specify different validity periods. For instance, you can request a certificate valid for 1 day, 6 days, or even 12 days using a similar command tailored for GTS. The author successfully issued a one-day certificate, demonstrating the capability of GTS to accommodate very short lifespans. The author emphasizes automation as key to managing these short-lived certificates effectively. Once set up with an ACME client, the frequency of certificate renewal becomes less of a burden. The transition from 90-day certificates to 6-day options requires minimal adjustment, making it feasible to alternate between Let's Encrypt and Google Trust Services as needed. This shift not only enhances security but streamlines the management of SSL/TLS certificates.