Set a keypair expiry date

The keypair expiry workflow improves security and supports crypto agility. You can set standard keypairs to expire on a specific date, on certificate expiration, or keep them non-expiring as before. Expiry dates help maintain security, ensure compliance with industry standards, and preserve trust in your code’s integrity.

In the Software Trust menu, go to Keypairs > Keypairs.
Select the desired keypair.
Select the edit () icon.

For Keypair validity, select an option:

Table 1.

Option	Description
Match keypair and certificate expiry dates	Select to set the keypair's expiry date to the same date that your default certificate for the keypair expires. The keypair expires at midnight (UTC) of the same day your certificate expires.
Select an expiry date	Select to set a specific expiry date for your keypair. The keypair expires at the end of the day you selected, precisely at midnight (UTC).
Never expire	Select to keep your keypair active until you manually add an expiry date.

Option

Description

Match keypair and certificate expiry dates

Select to set the keypair's expiry date to the same date that your default certificate for the keypair expires.

The keypair expires at midnight (UTC) of the same day your certificate expires.

Select an expiry date

Select to set a specific expiry date for your keypair. The keypair expires at the end of the day you selected, precisely at midnight (UTC).

Never expire

Select to keep your keypair active until you manually add an expiry date.

Select Update.

In this section:

Set a keypair expiry date

Search results