Per https://support.apple.com/en-us/HT211025
Quoting:
"In our ongoing efforts to improve web security for our users, Apple is reducing the maximum allowed lifetimes of TLS server certificates [to 398 days]"
- [...]
- "This change will not affect certificates issued from user-added or administrator-added Root CAs."
Questions:
- What defines "user-added or administrator-added Root CAs"?
- How do we get our hands on a version of Safari now to test/prepare for this change? What version(s) of Safari honors this change?
Note, I've asked a similar question on StackExchange: https://apple.stackexchange.com/questions/384033