In my environment a single CA has multiple keys to sign certificates. I made some attempts, but I didn't find a way to make openssl successfully import them in the certificate store. Furthermore, looking at the code, I found that the verification routine looks for certificates in the store using the Subject field, but I don't know what happens if there are more than one with the same Subject. I wonder if there is a way to look for certificates using the Key Identifier. Can anybody help? Claudio Campetto. ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]
