diff options
Diffstat (limited to 'spec/dir-spec/creating-key-certificates.md')
-rw-r--r-- | spec/dir-spec/creating-key-certificates.md | 22 |
1 files changed, 11 insertions, 11 deletions
diff --git a/spec/dir-spec/creating-key-certificates.md b/spec/dir-spec/creating-key-certificates.md index 56b715b..ebe3e2f 100644 --- a/spec/dir-spec/creating-key-certificates.md +++ b/spec/dir-spec/creating-key-certificates.md @@ -6,7 +6,7 @@ Key certificates consist of the following items: "dir-key-certificate-version" version NL -[At start, exactly once.] +\[At start, exactly once.\] Determines the version of the key certificate. MUST be "3" for the protocol described in this document. Implementations MUST @@ -28,8 +28,8 @@ identity key. "dir-identity-key" NL a public key in PEM format -[Exactly once.] -[No extra arguments] +\[Exactly once.\] +\[No extra arguments\] The long-term authority identity key for this authority. This key SHOULD be at least 2048 bits long; it MUST NOT be shorter than @@ -37,7 +37,7 @@ SHOULD be at least 2048 bits long; it MUST NOT be shorter than "dir-key-published" YYYY-MM-DD HH:MM:SS NL -[Exactly once.] +\[Exactly once.\] The time (in UTC) when this document and corresponding key were last generated. @@ -47,7 +47,7 @@ too far in the future, though they MAY tolerate some clock skew. "dir-key-expires" YYYY-MM-DD HH:MM:SS NL -[Exactly once.] +\[Exactly once.\] A time (in UTC) after which this key is no longer valid. @@ -56,16 +56,16 @@ MAY tolerate some clock skew. "dir-signing-key" NL a key in PEM format -[Exactly once.] -[No extra arguments] +\[Exactly once.\] +\[No extra arguments\] The directory server's public signing key. This key MUST be at least 1024 bits, and MAY be longer. "dir-key-crosscert" NL CrossSignature NL -[Exactly once.] -[No extra arguments] +\[Exactly once.\] +\[No extra arguments\] CrossSignature is a signature, made using the certificate's signing key, of the digest of the PKCS1-padded hash of the certificate's @@ -79,8 +79,8 @@ of the hash of the identity key using the signing key. "dir-key-certification" NL Signature NL -[At end, exactly once.] -[No extra arguments] +\[At end, exactly once.\] +\[No extra arguments\] A document signature as documented in section 1.3, using the initial item "dir-key-certificate-version" and the final item |