AWS Certificate Manager Private Certificate Authority
User Guide (Version latest)


The following ACM PCA limits apply for each region and each account. To request higher limits, create a case at the AWS Support Center. New AWS accounts might start with limits that are lower than those that are described here.

Item Default Limit
Number of private certificate authorities (CAs) 10
Number of private certificates per private CA 50,000

ACM PCA is integrated with ACM. You can use the ACM console, AWS CLI, or ACM API to request private certificates from an existing private certificate authority (CA). The certificates are managed by ACM and have the same restrictions as public certificates issued by ACM. For a list of the restrictions, see Request a Private Certificate. You can also issue private certificates with the standalone ACM PCA service. For more information, see Issue a Private Certificate. Regardless of which method you use, you can create 10 private CAs and 50,000 private certificates for each. ACM places limits on public and imported certificates. For more information, see ACM Limits.