But at some point (agreeably, a long time in the future; possibly after the heat death of the universe), the mnemonics will be exhausted but the private keys won't. Also, what stops clashes with private keys generated without the mnemonic? – Xophmeister – 2017-09-08T16:42:50.390

Firstly 2^132 is a huge number. Roughly equal to the number of atoms in the universe. And that also answers your second question, where pure chance basically is the answer. – weston – 2017-09-08T16:45:05.647

Actually, maybe not atoms in the universe, google failure there, but extremely huge. – weston – 2017-09-08T16:46:21.253

I invite you to experiment with https://iancoleman.github.io/bip39/ a great resource for seeing how it works.

Also take a look at this https://bitcoin.stackexchange.com/questions/8804/is-each-bitcoin-address-unique which should answer your question on why there won't be clashes better than I can.

So it's a "drop in the ocean" argument...actually, I just calculated that (average drop is ~50ml, volume of water on Earth is ~1.4Tm^3) and even that's a vast under-representation (by 15 orders of magnitude), so maybe that's a good way of visualising it. I don't know why I didn't see this before; it's pretty obvious when put like that! Thanks :) – Xophmeister – 2017-09-08T16:56:40.203

np, and what makes it even more amazing is that each mnemonic doesn't generate a single private key, but can generate infinite private keys on infinite derivation paths, and none of that matters, you still won't increase the chances of getting a clash – weston – 2017-09-08T16:57:09.113

50ml is a big drop, that's 1/6-1/7th of a drink can! – weston – 2017-09-08T17:00:08.773

Typo; I meant μl! – Xophmeister – 2017-09-08T17:01:36.537