Shopify Renews mTLS Client Certificate for Payments Apps

Certificate Renewal Timeline

Shopify announces it will renew its mTLS (mutual Transport Layer Security) client certificate on June 15, 2026. This certificate authenticates that payment requests originate from Shopify’s platform. The current certificate expires on July 24, 2026, requiring renewal before that date to maintain service continuity.

Impact on Payments Apps

The new certificate comes from the same Certificate Authority that signed the current certificate. Payments apps using standard certificate validation will continue functioning without modifications. Apps that implement custom certificate checks or validation logic may require updates to recognize the new certificate.

Technical Considerations

Developers running payments apps should review their authentication implementations before the June 2026 renewal date. Apps that validate certificates using only the Certificate Authority chain will handle the transition automatically. However, apps with hardcoded certificate fingerprints, custom validation rules, or certificate pinning logic need updates to accept the new certificate.

The mTLS protocol provides mutual authentication between Shopify and payment processors, verifying both parties’ identities during API communications. This security layer prevents unauthorized parties from initiating payment requests that appear to come from Shopify.

Payments app developers should test their certificate validation logic in development environments before the renewal date. This ensures their apps continue processing payments without interruption when Shopify deploys the new certificate on June 15, 2026.

Read the full announcement →