Aleksey, I'm trying to validate the attached document, so I'm using two command lines to verify both signatures:
xmlsec1 --verify --print-debug \ --print-crypto-error-msgs \ --id-attr:ID 'http://www.sii.cl/SiiDte:Documento' \ --node-name 'http://www.sii.cl/SiiDte:Documento' \ --node-id 'F185T33' \ documento-20100427.1.xml 2>&1 xmlsec1 --verify --print-debug \ --print-crypto-error-msgs \ --id-attr:ID 'http://www.sii.cl/SiiDte:SetDTE' \ --node-name 'http://www.sii.cl/SiiDte:SetDTE' \ --node-id 'DTE1272374641984' \ documento-20100427.1.xml 2>&1 With first one, the signature is validated and it's ok, but the second one seems to try to verify the first '#F185T33' instead of the second one '#DTE1272374641984', and I get this error message: Error: signature failed ERROR SignedInfo References (ok/all): 0/1 Manifests References (ok/all): 0/0 Error: failed to verify file "documento-20100427.1.xml" = VERIFICATION CONTEXT == Status: unknown And the trace seems to be looking at the first URI: func=xmlSecXPathDataExecute:file=xpath.c:line=273:obj=unknown:subj=xmlXPtrEval:error=5:libxml2 library function failed:expr=xpointer(id('F185T33')) func=xmlSecXPathDataListExecute:file=xpath.c:line=356:obj=unknown:subj=xmlSecXPathDataExecute:error=1:xmlsec library function failed: Thanks in advance,
documento-20100427.1.xml
Description: XML document
_______________________________________________ xmlsec mailing list [email protected] http://www.aleksey.com/mailman/listinfo/xmlsec
