And this is the case where it's interesting that the CA can accept an SKI in the request.
If you want to cross-certificate a certificate, it makes things a lot better if all CA give it the same SKI.
But it should be an option, that's not usually on.
I will make this an option too, eventually... _______________________________________________ mozilla-crypto mailing list [EMAIL PROTECTED] http://mail.mozilla.org/listinfo/mozilla-crypto
