On 18/11/16 15:27, Rob Stradling wrote: > RFC6962 precertificates are X.509 certificates, but 6962-bis > precertificates are CMS signed-data objects. > > See > https://tools.ietf.org/id/draft-ietf-trans-rfc6962-bis-20.html#rfc.section.3.2 > > Does that make them "non-certificate data" ?
Hang on... why would someone be signing one of these using SHA-1? SHA-1 use in the WebPKI is banned. Gerv _______________________________________________ Public mailing list [email protected] https://cabforum.org/mailman/listinfo/public
