diff --git a/.github/workflows/x509-cert.yml b/.github/workflows/x509-cert.yml
index 1d7c699c7..dbf396e65 100644
--- a/.github/workflows/x509-cert.yml
+++ b/.github/workflows/x509-cert.yml
@@ -26,7 +26,7 @@ jobs:
     strategy:
       matrix:
         rust:
-          - 1.65.0 # MSRV
+          - 1.75.0 # MSRV
           - stable
         target:
           - thumbv7em-none-eabi
@@ -51,7 +51,7 @@ jobs:
     strategy:
       matrix:
         rust:
-          - 1.65.0 # MSRV
+          - 1.75.0 # MSRV
           - stable
     steps:
       - uses: actions/checkout@v4
diff --git a/x509-cert/Cargo.toml b/x509-cert/Cargo.toml
index 8a89febe6..51a346d9a 100644
--- a/x509-cert/Cargo.toml
+++ b/x509-cert/Cargo.toml
@@ -12,7 +12,7 @@ categories = ["cryptography", "data-structures", "encoding", "no-std"]
 keywords = ["crypto"]
 readme = "README.md"
 edition = "2021"
-rust-version = "1.65"
+rust-version = "1.75"
 
 [dependencies]
 const-oid = { version = "0.9.6", features = ["db"] }
@@ -21,7 +21,7 @@ spki = { version = "0.7.3", features = ["alloc"] }
 
 # optional dependencies
 arbitrary = { version = "1.3", features = ["derive"], optional = true }
-async-signature = { version = "0.5.0-pre.0", features = ["digest", "rand_core"], optional = true } # raises MSRV to 1.75 for AFIT support
+async-signature = { version = "0.5.0-pre.0", features = ["digest", "rand_core"], optional = true }
 sha1 = { version = "0.10.6", optional = true }
 signature = { version = "2.1.0", features = ["rand_core"], optional = true }
 tls_codec = { version = "0.4.0", default-features = false, features = ["derive"], optional = true }