docs: add 47-day cert lifespan motivation, update roadmap, cross-validate all docs

README: lead with CA/Browser Forum Ballot SC-081v3 (47-day certs by 2029) and certctl's end-to-end automation positioning. Update architecture diagram and target lists to include Apache/HAProxy. Update roadmap with new M15 (Revocation Infrastructure), renumbered M16-M18, and V3.1 cert-manager/IAM Roles Anywhere additions. concepts.md: rewrite "Why Do Certificates Expire?" with shrinking lifespan timeline and automation imperative. quickstart.md: add 47-day framing in intro. architecture.md: add Apache/HAProxy to system diagram, target connector diagram, deployment section, and ER diagram (agent metadata columns). Update planned targets list for V3.1. Fix test count (230+). connectors.md: fix notifier planned version reference (V2 not V2.1). Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-06-07 14:01:36 +00:00 · 2026-03-20 19:28:02 -04:00
parent 07275bf92f
commit 7450fcfb07
5 changed files with 42 additions and 25 deletions
@@ -1,6 +1,6 @@
 # Quick Start Guide

-Get certctl running locally and managing certificates in under 5 minutes.
+Get certctl running locally and managing certificates in under 5 minutes. With TLS certificate lifespans dropping to 47 days by 2029, automated lifecycle management isn't optional — it's infrastructure. This guide gets you hands-on with certctl's automation loop: tracking, renewing, and deploying certificates without manual intervention.

 New to certificates? Read the [Concepts Guide](concepts.md) first — it explains TLS, CAs, and private keys in plain language.