Let's Encrypt sets date for ending OCSP support

In July, Let's Encrypt announced it was endingsupport "as soon as possible" for the OnlineCertificate Status Protocol (OCSP) in favor of CertificateRevocation Lists (CRLs) due to privacy concerns. The organizationhas now announcedthat it has set a timeline, and will be turning off its OCSPresponders on August6, 2025. There is additional action requiredfor Let's Encrypt users who use the OCSP Must Staple Extension:

As of January 30, 2025, issuance requests that include the OCSPMust Staple extension will fail, unless the requesting account haspreviously issued a certificate containing the OCSP Must Stapleextension.

As of May 7, all issuance requests that include the OCSP MustStaple extension will fail, including renewals. Please change yourACME client configuration to not request the extension.