Hi, I have got a CRL and a CA certificate from an external CA (poth PEM). Trying to use this CRL results in lots of 'Invalid signature on CRL' messages in the log. Trying 'openssl crl -in my.crl -CAfile -my.crt' results in a 'verify failure'. Both the CRL and the certificate seems fine otherwise. I can list the contents of both using openssl. The certificate works fine for validating user certificates. Anyone had this kind of problem ?? Regards, Jon E. Hetty ______________________________________________________________________ Apache Interface to OpenSSL (mod_ssl) www.modssl.org User Support Mailing List [EMAIL PROTECTED] Automated List Manager [EMAIL PROTECTED]