Changes to Universal certificates
The validity period for Universal certificates will also be decreased from one year to 90 days.
You do not need to make any updates to the Domain Control Validation (DCV) for your zone.
If you are currently pinning your Universal certificate, stop pinning the certificate. This will ensure your certificates are not impacted during the Universal certificate renewal.
If you have CAA records that are not automatically added by Cloudflare, make sure to allow the other Cloudflare CAs to issue certificates for your domain. Since Universal SSL does not guarantee which CA will issue the certificate, it is recommended that you add .