sectigo

Sectigo is migrating to single-purpose public roots for TLS, S/MIME, and code signing certificates. This active infrastructure change requires certificate holders to update their certificate chains before the migration window closes. The new Sectigo Public roots (R46/E46 and R36/E36 subordinate CAs) are already issuing certificates, with cross-signing for legacy compatibility. Certificates bound to older chains will become unsupported if not updated. WindowsForum.com discussions cover planning and technical steps for this migration, emphasizing the need for immediate attention from anyone using Sectigo-issued certificates.