Silviu Vlasceanu wrote: > To reformulate,
> Is there a way to generate a certificate without a proof of possession? > Thanks. Absolutely. Just stuff all the fields that you want into the certificate and sign it. Simply take the fields from wherever you have them rather than from the CSR. You are the one who started out by saying you had enough information to do this. You can follow the same code used to generate self-signed certificates. Just sign it with the CA certificate (and use the CA's key info for the authority key fields). DS ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]