Thanks for helping me with forced external RSA keys. Now I've dissected the example MiniCert and found where the user's public key is stored. User's key is 512 bits.
I did a testing utility that takes both keys (the example documentation provides the user's private key as well) and tryes to encrypt with one and decrypt with another to see if the keys match. So, the remaining part of MiniCert must be the signature - exactly 128 bytes, which corresponds to the CA's key of 1024 bits. Currently I'm stuck on guessing the algorithm they could use to obtain that signature. I did try "md5", "sha1" and "ripemd160" in all combinations (I hope) - my signatures are different from their's... Did I miss something in the procedure of cert generation? I take the buffer with the concatenated user-data+expiry date, the user's public key - and create a hash, then I sign the hash with CA's private key. And still - my 128 bytes are different from what I see in the example MiniCert. What else can I try? Thank you in advance! -- Best regards, Tony mailto:[EMAIL PROTECTED] ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List [email protected] Automated List Manager [EMAIL PROTECTED]
