Tags:
- Platform
- Payments Apps API
mTLS client certificate renewal for Payments Apps
Starting June 15, 2026, Shopify will renew its mTLS client certificate used by Payments Apps to verify that the client initiating the request is Shopify.
Unless you're using custom checks or validation logic, this update won't impact your live payments apps, as the new certificate is signed by the same Certificate Authority as the current one.
Who's affected
Reason for the change
The current certificate will expire on July 24, 2026. It must be renewed before this date to ensure uninterrupted service.
What you need to do
Action is required if you use custom certification validation.
If you use custom certificate validation
Action is required before June 15, 2026. If your app checks the Common Name (CN) or other certificate-specific fields, you must update your validation logic to accept the new certificate.
If you use standard mTLS validation
No action is required. The new certificate is signed by the same CA.
For more information, refer to the certificate details.