Hi all!
From what I've managed to comprehend of draft-ietf-pkix-ipki-part1 my
v2 CRL needs an AuthorityKeyIdentifier. Quoting paragraph 4.2.1.2:
(1) The keyIdentifier is composed of the 160-bit SHA-1 hash of the
value of the BIT STRING subjectPublicKey (excluding the tag,
length, and number of unused bits).
Seeing as cert_info->key->public_key is an ASN1_BIT_STRING, am I
correct in assuming that I should hash public_key->length bytes of
public_key->data in order to get my AuthorityKeyIdentifier?
Cheers!
PS. Has the regular ssl-users list been taken off-line?
//oscar
begin:vcard
n:Jacobsson;Oscar
tel;cell:+46 709 219507
tel;fax:+46 8 219505
tel;work:+46 8 2088585
x-mozilla-html:FALSE
url:http://www.medcom.se
org:Media Communications Eur AB (publ)
adr:;;P.O. Box 1144;Stockholm;;S-111 81;Sweden
version:2.1
email;internet:[EMAIL PROTECTED]
title:Technical Consultant
fn:Oscar Jacobsson
end:vcard
