---
title: >-
  mTLS client certificate renewal for Payments Apps - Shopify developer
  changelog
description: >-
  Shopify’s developer changelog documents all changes to Shopify’s platform.
  Find the latest news and learn about new platform opportunities.
source_url:
  html: >-
    https://shopify.dev/changelog/mtls-client-certificate-renewal-for-payments-apps
  md: >-
    https://shopify.dev/changelog/mtls-client-certificate-renewal-for-payments-apps.md
metadata:
  effectiveApiVersion: ''
  affectedApi:
    - displayName: Payments Apps API
      handle: payments-apps-api
  primaryTag:
    displayName: Platform
    handle: platform
  secondaryTag:
    displayName: Update
    handle: update
  indicatesActionRequired: false
  createdAt: '2026-03-25T09:18:59-04:00'
  postedAt: '2026-04-15T21:00:00-04:00'
  updatedAt: '2026-04-16T11:05:36-04:00'
  effectiveAt: '2026-04-13T12:00:00-04:00'
---

April 16, 2026

Tags:

* Platform
* Payments Apps API

# mTLS client certificate renewal for Payments Apps

Starting June 15, 2026, Shopify will renew its mTLS client certificate used by Payments Apps to verify that the client initiating the request is Shopify.

Unless you're using custom checks or validation logic, this update won't impact your live payments apps, as the new certificate is signed by the same [Certificate Authority](https://shopify.dev/docs/apps/build/payments/considerations#shopifys-self-signed-certificate-authority-ca) as the current one.

## Who's affected

[Payments Apps](https://shopify.dev/docs/apps/build/payments)

## Reason for the change

The current certificate will expire on July 24, 2026. It must be renewed before this date to ensure uninterrupted service.

## What you need to do

Action is required if you use custom certification validation.

### If you use custom certificate validation

Action is required before June 15, 2026. If your app checks the Common Name (CN) or other certificate-specific fields, you must update your validation logic to accept the new certificate.

### If you use standard mTLS validation

No action is required. The new certificate is signed by the same CA.

For more information, refer to the [certificate details](https://shopify.dev/docs/apps/build/payments/considerations#new-certificate-effective-mid-june-2026).