This might be a little orthogonal, but what about the signal being some manner of "last updated" or "last modified" time for the ARI response itself? Generally that could be the issuance time of the certificate.
That doesn't even have to be a field in the response document, we could utilize the HTTP headers instead, and recommend clients and servers make use of it this way. J.C. On Wed, Mar 22, 2023 at 2:43 PM Andrew Ayer <[email protected]> wrote: > Consumption by monitoring programs was the reason for constructing the > ARI URL from the issuer and serial number. However, ARI is not > useful for monitoring programs without an indication of whether the > renewal window is due to revocation. > >
_______________________________________________ Acme mailing list [email protected] https://www.ietf.org/mailman/listinfo/acme
