Sectigo is also going to be forced into issuing short-lived certificates. This is a CA/Browser Forum decision that is binding on all member CAs.

They will, but Sectigo forcing faster renewal doesn't make Let's Encrypt into a central failure point. Central failure point was the worry above.

But sectigo does not care, they are just like Let's Encrypt (except you pay)

You can renew your sectigo certificates with ACME so from a technical point of view, just trigger your cron more often

AWS still generates yearly certs.

In april 2026, they will generate certificates with a 200 days validity period