Hello, I have to create a certificate which is a constrained form of a X.509 certificate. I am writing an OpenSSL conf file for that. I would appreciate some help on the few following points as I am not used to use OpenSSL:
The validity dates should be UTCTime (2 digit years) through the year 2049 and GeneralizedTime (4 digit years) from 2050. How can I modify the date type? In the issuer and subject fields, I must include a dnQualifier which is a thumbprint of the corresponding public key, that is to say a SHA-1 hash of the contents of the SubjectPublicKey BIT STRING in the SubjectPublicKeyInfo field (excluding the DER tag, length, and number of unused bits count in the DER header for the BIT STRING). How can I do that? Regards, - Emmanuel ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
