IMPORTANT: To align with security standards, we make periodic updates to our root TLS provider for API traffic. For some integrations, this requires updating certificates that are pinned to PayPal-owned domains, or updating certificate authorities (CA) and intermediaries associated with PayPal-owned domains.
We do not recommend you follow this practice as we are unable to proactively contact you regarding upcoming changes that could impact your processing.
If you still feel it is necessary for your integration, you should know that these certificates are subject to change, and the best way to be apprised of upcoming changes is to subscribe to email notifications via PayPal Status
TLS certificates currently valid for Live PayPal servers:
TLS certificates currently valid for Payflow Pro servers:
TLS certificates currently valid for Sandbox servers: