From 333c36dc2d511b5002ed36204df8199b5e773880 Mon Sep 17 00:00:00 2001
From: neil <github@neilpang.com>
Date: Fri, 1 Apr 2022 21:40:08 +0800
Subject: [PATCH] Updated Validity (markdown)

---
 Validity.md | 32 +++++++++++++++++++++++++++++++-
 1 file changed, 31 insertions(+), 1 deletion(-)

diff --git a/Validity.md b/Validity.md
index 1dbd45b..ce23316 100644
--- a/Validity.md
+++ b/Validity.md
@@ -1 +1,31 @@
-validity
\ No newline at end of file
+The ACME protocol supported the `NotBefore` and `NotAfter` fields of the cert.
+And some of the CAs supported this feature. (The Letsencrypt CA doesn't support it for now)
+
+
+There are 2 command options to use:
+
+1. The `--valid-to <date time>` option, which is for `NotAfter` field.
+2. The `--valid-from <date time>` option, which is for `NotBeofre` field.
+
+
+
+Usage: 
+
+### 1.  Set the lifetime of the cert:
+
+```
+acme.sh --issue  -d  example.com  -dns dns_cf    --valid-to  "2022-04-01T08:10:33Z"
+```
+
+The value of `--valid-to` is an absolute date time in the future.   The issued cert will expire on that time(`NotAfter`).
+
+Please be careful about the date time format,  it Must be exact format used above.
+
+
+
+
+
+
+
+
+