draft-ietf-smime-examples-07.txt   draft-ietf-smime-examples-08.txt 
Internet Draft Editor: Paul Hoffman Internet Draft Editor: Paul Hoffman
draft-ietf-smime-examples-07.txt Internet Mail Consortium draft-ietf-smime-examples-08.txt Internet Mail Consortium
November 5, 2001 September 25, 2002
Expires in six months Expires in six months
Examples of S/MIME Messages Examples of S/MIME Messages
Status of this memo Status of this memo
Internet-Drafts are working documents of the Internet Engineering Task Internet-Drafts are working documents of the Internet Engineering Task
Force (IETF), its areas, and its working groups. Note that other Force (IETF), its areas, and its working groups. Note that other
groups may also distribute working documents as Internet-Drafts. groups may also distribute working documents as Internet-Drafts.
skipping to change at line 56 skipping to change at line 56
Every example in this document has been checked by two different Every example in this document has been checked by two different
implementors. This strongly indicates (but does not assure) that the implementors. This strongly indicates (but does not assure) that the
examples are correct. All CMS implementors must read the CMS document examples are correct. All CMS implementors must read the CMS document
carefully before implementing from it. No one should use the examples carefully before implementing from it. No one should use the examples
in this document as stand-alone explanations of how to create CMS in this document as stand-alone explanations of how to create CMS
message bodies. message bodies.
This document explicitly does not attempt to cover many PKIX [PKIX] This document explicitly does not attempt to cover many PKIX [PKIX]
examples. Documents with examples of that format may be forthcoming. examples. Documents with examples of that format may be forthcoming.
Also, note that [DVCS], which covers PKIX Data Validation and
Certification Server Protocols, has examples of formats for its
protocol.
This draft is being discussed on the 'ietf-smime-examples' mailing list. This draft is being discussed on the 'ietf-smime-examples' mailing list.
To join the list, send a message to ietf-smime-examples-request@imc.org To join the list, send a message to ietf-smime-examples-request@imc.org
with the single word "subscribe" in the body of the message. Also, with the single word "subscribe" in the body of the message. Also,
there is a Web site for the mailing list at there is a Web site for the mailing list at
<http://www.imc.org/ietf-smime-examples/>. Note that S/MIME itself is <http://www.imc.org/ietf-smime-examples/>. Note that S/MIME itself is
discussed in the IETF's S/MIME Working Group; see discussed in the IETF's S/MIME Working Group; see
<http://www.imc.org/ietf-smime/> for more information. <http://www.imc.org/ietf-smime/> for more information.
2. Contributions To This Document 2. Contributions To This Document
skipping to change at line 265 skipping to change at line 268
: } : }
: } : }
323 04 34: OCTET STRING, encapsulates { 323 04 34: OCTET STRING, encapsulates {
325 02 32: INTEGER 325 02 32: INTEGER
: 20 FC 67 82 EE CF 4A A6 C8 E5 83 D2 8C 3B 8A D2 : 20 FC 67 82 EE CF 4A A6 C8 E5 83 D2 8C 3B 8A D2
: 45 32 11 27 32 6C 86 EC 66 CA 71 AD F0 19 4D F7 : 45 32 11 27 32 6C 86 EC 66 CA 71 AD F0 19 4D F7
: } : }
: } : }
BobPrivRSAEncrypt = BobPrivRSAEncrypt =
0 30 630: SEQUENCE { 0 30 645: SEQUENCE {
4 02 1: INTEGER 0 4 02 1: INTEGER 0
7 30 13: SEQUENCE { 7 30 13: SEQUENCE {
9 06 9: OBJECT IDENTIFIER rsaEncryption (1 2 840 113549 1 1 1) 9 06 9: OBJECT IDENTIFIER rsaEncryption (1 2 840 113549 1 1 1)
: (PKCS #1) : (PKCS #1)
20 05 0: NULL 20 05 0: NULL
: } : }
22 04 608: OCTET STRING, encapsulates { 22 04 608: OCTET STRING, encapsulates {
26 30 604: SEQUENCE { 26 30 604: SEQUENCE {
30 02 1: INTEGER 0 30 02 1: INTEGER 0
33 02 129: INTEGER 33 02 129: INTEGER
: 00 E4 4B FF 18 B8 24 57 F4 77 FF 6E 73 7B 93 71 : 00 A9 E1 67 98 3F 39 D5 5F F2 A0 93 41 5E A6 79
: 5C BC 33 1A 92 92 72 23 D8 41 46 D0 CD 11 3A 04 : 89 85 C8 35 5D 9A 91 5B FB 1D 01 DA 19 70 26 17
: B3 8E AF 82 9D BD 51 1E 17 7A F2 76 2C 2B 86 39 : 0F BD A5 22 D0 35 85 6D 7A 98 66 14 41 5C CF B7
: A7 BD D7 8D 1A 53 EC E4 00 D5 E8 EC A2 36 B1 ED : B7 08 3B 09 C9 91 B8 19 69 37 6D F9 65 1E 7B D9
: E2 50 E2 32 09 8A 3F 9F 99 25 8F B8 4E AB B9 7D : A9 33 24 A3 7F 3B BB AF 46 01 86 36 34 32 CB 07
: D5 96 65 DA 16 A0 C5 BE 0E AE 44 5B EF 5E F4 A7 : 03 59 52 FC 85 8B 31 04 B8 CC 18 08 14 48 E6 4F
: 29 CB 82 DD AC 44 E9 AA 93 94 29 0E F8 18 D6 C8 : 1C FB 5D 60 C4 E0 5C 1F 53 D3 7F 53 D8 69 01 F1
: 57 5E F2 76 C4 F2 11 60 38 B9 1B 3C 1D 97 C9 6A : 05 F8 7A 70 D1 BE 83 C6 5F 38 CF 1C 2C AA 6A A7
: F1 : EB
165 02 3: INTEGER 65537 165 02 3: INTEGER 65537
170 02 129: INTEGER 170 02 128: INTEGER
: 00 AE 73 E4 5B 5F 5B 66 5A C9 D7 C6 EF 38 5F 53 : 67 CD 48 4C 9A 0D 8F 98 C2 1B 65 FF 22 83 9C 6D
: 21 2A 2F 62 FE DE 29 9A 7A 86 67 36 E7 7D 62 78 : F0 A6 06 1D BC ED A7 03 88 94 F2 1C 6B 0F 8B 35
: 75 3D 73 A0 BC 29 0E F3 8F BD C3 C9 C9 B6 F8 BA : DE 0E 82 78 30 CB E7 BA 6A 56 AD 77 C6 EB 51 79
: D6 13 9B C3 97 7A CA 6A F0 B8 85 65 4E 0F BD A7 : 70 79 0A A0 F4 FE 45 E0 A9 B2 F4 19 DA 87 98 D6
: A8 F7 54 06 41 BD EB DC 20 77 90 DF 61 9B 9A 6F : 30 84 74 E4 FC 59 6C C1 C6 77 DC A9 91 D0 7C 30
: 74 DE EA 3B D4 9C 87 60 ED 76 84 F1 6A 30 37 D5 : A0 A2 C5 08 5E 21 71 43 FC 0D 07 3D F0 FA 6D 14
: E0 90 16 F8 80 47 C3 19 6B ED 75 77 BA 4A ED 39 : 9E 4E 63 F0 17 58 79 1C 4B 98 1C 3D 3D B0 1B DF
: B6 5D 02 47 3B 5F 1B C8 1C AB CB E8 F5 26 3F A4 : FA 25 3B A3 C0 2C 98 05 F6 10 09 D8 87 DB 03 19
: 81 301 02 65: INTEGER
302 02 65: INTEGER : 00 D0 C3 22 C6 DE A2 99 18 76 8F 8D BC A6 75 D6
: 00 FF DF 09 A0 56 0B 42 52 9E C4 4D 93 B3 B0 49 : 66 3F D4 8D 45 52 8C 76 F5 72 C4 EB F0 46 9A F1
: BB DE E7 81 7D 28 99 D0 B1 48 BA 0B 39 E1 1C 7B : 3E 5C AA 55 0B 9B DA DD 6B 6D F8 FC 3B 3C 08 43
: 22 18 33 B6 40 F6 BF DC AE 1D D0 A1 AD 04 71 5A : 93 B5 5B FE CE EA FD 68 84 23 62 AF F3 31 C2 B9
: 61 0A 6E 3B CE 30 DA 36 9F 65 25 29 BB A7 0E 7F : E5
: 0B 368 02 65: INTEGER
369 02 65: INTEGER : 00 D0 51 FC 1E 22 B7 5B ED B5 8E 01 C8 D7 AB F2
: 00 E4 69 68 18 5F F9 57 D0 7C 66 89 0F BA 63 1D : 58 D4 F7 82 94 F3 53 A8 19 45 CB 66 CA 28 19 5F
: 72 CB 20 A4 81 76 64 89 CD 7D D1 C2 27 A9 2E AC : E2 10 2B F3 8F EC 6A 30 74 F8 4D 11 F4 A7 C4 20
: 7A 56 9A 85 07 D9 30 03 A3 03 AB 7F 88 92 50 24 : B5 47 21 DC 49 01 F9 0A 20 29 F0 24 08 84 60 7D
: 01 AA 1B 07 1F 20 4C B7 C9 7B 56 F7 B6 C2 7E AB : 8F
: 73 435 02 64: INTEGER
436 02 64: INTEGER : 34 BA 64 C9 48 28 57 74 D7 55 50 DE 6A 48 EF 1B
: 57 36 6C 8F 8C 04 76 6C B6 D4 EE 24 44 00 F8 80 : 2A 5A 1C 48 7B 1E 21 59 C3 60 3B 9B 97 A9 C0 EF
: E2 AF 42 01 A9 0F 14 84 F8 E7 00 E0 8F 8C 27 A4 : 18 66 A9 4E 62 52 38 84 CE E5 09 88 48 94 69 C5
: 2D 5F A2 E5 6D B5 63 C0 AD 44 E9 76 91 A7 19 49 : 20 14 99 5A 57 FE 23 6C E4 A7 23 7B D0 80 B7 85
: 2E 46 F8 77 85 4B 3B 87 04 F0 AF D2 D8 54 26 95 501 02 65: INTEGER
502 02 64: INTEGER : 00 9E 2F B3 37 9A FB 0B 06 5D 57 E1 09 06 A4 5D
: 64 A1 0F AC 55 74 1B BD 0D 61 7B 17 03 CD B0 E6 : D9 90 96 06 05 5F 24 06 40 72 9C 3A 88 85 9C 87
: A7 19 1D 80 AF F1 41 48 D8 1A B6 88 14 A0 2C 7A : 0F 9D 62 12 88 16 68 A8 35 1A 1B 43 E8 38 C0 98
: C5 76 D4 0F 0E 1F 7A 2A B2 6E 37 04 AB 39 45 73 : 69 AF 03 0A 48 32 04 4E E9 0F 8F 77 7D 34 30 25
: BA 46 A8 0F 8D 82 5F 22 14 05 CF A2 A3 F3 7C 83 : 07
568 02 64: INTEGER 568 02 64: INTEGER
: 26 1E 1D 1C A1 98 2B E4 DB 38 E8 57 6E 6B 73 19 : 57 18 67 D6 0A D2 B5 AB C2 BA 7A E7 54 DA 9C 05
: 88 61 3A FA 74 4A 36 8B 47 68 5D 50 EB 26 E3 EA : 4F 81 D4 EF 01 89 1E 32 3D 69 CB 31 C4 52 C8 54
: 7D 9B 4E 65 A9 AF 7B AB 4B 2E 76 51 3D A8 D0 11 : 55 25 00 3B 1C 2A 7C 26 50 D5 E9 A6 D7 77 CB CF
: AB A3 D6 A8 C0 27 36 1D 54 0B AA A7 D1 6D 8D FA : 15 F5 EE 0B D5 8D EE B3 AF 4C A1 7C 63 46 41 F6
: }
: }
634 A0 13: [0] {
636 30 11: SEQUENCE {
638 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15)
: (X.509 id-ce (2 5 29))
643 31 4: SET {
645 03 2: BIT STRING 0 unused bits
: '00001000'B (bit 3)
: Error: Spurious zero bits in bitstring.
: }
: } : }
: } : }
: } : }
CarlPrivDSSSign = CarlPrivDSSSign =
0 30 330: SEQUENCE { 0 30 330: SEQUENCE {
4 02 1: INTEGER 0 4 02 1: INTEGER 0
7 30 299: SEQUENCE { 7 30 299: SEQUENCE {
11 06 7: OBJECT IDENTIFIER dsa (1 2 840 10040 4 1) 11 06 7: OBJECT IDENTIFIER dsa (1 2 840 10040 4 1)
: (ANSI X9.57 algorithm) : (ANSI X9.57 algorithm)
skipping to change at line 1034 skipping to change at line 1048
: 15 EA 15 43 E3 49 22 86 C1 BB E5 DA E4 0E B8 09 : 15 EA 15 43 E3 49 22 86 C1 BB E5 DA E4 0E B8 09
: E0 D5 72 35 : E0 D5 72 35
847 02 21: INTEGER 847 02 21: INTEGER
: 00 AE 4F 51 29 73 71 75 A9 81 EB ED 9D 5E 00 19 : 00 AE 4F 51 29 73 71 75 A9 81 EB ED 9D 5E 00 19
: 7E F0 DE 5A D6 : 7E F0 DE 5A D6
: } : }
: } : }
: } : }
BobRSASignByCarl = BobRSASignByCarl =
0 30 520: SEQUENCE { 0 30 512: SEQUENCE {
4 30 369: SEQUENCE { 4 30 365: SEQUENCE {
8 A0 3: [0] { 8 A0 3: [0] {
10 02 1: INTEGER 2 10 02 1: INTEGER 2
: } : }
13 02 16: INTEGER 13 02 16: INTEGER
: 46 34 6B C7 80 00 56 BC 11 D3 6E 2E CD 5D 71 D0 : 46 34 6B C7 80 00 56 BC 11 D3 6E 2E CD 5D 71 D0
31 30 13: SEQUENCE { 31 30 9: SEQUENCE {
33 06 9: OBJECT IDENTIFIER 33 06 5: OBJECT IDENTIFIER sha-1WithRSAEncryption (1 3 14 3 2 29)
: sha1withRSAEncryption (1 2 840 113549 1 1 5) : (Oddball OIW OID)
: (PKCS #1) 40 05 0: NULL
44 05 0: NULL
: } : }
46 30 18: SEQUENCE { 42 30 18: SEQUENCE {
48 31 16: SET { 44 31 16: SET {
50 30 14: SEQUENCE { 46 30 14: SEQUENCE {
52 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 48 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
57 13 7: PrintableString 'CarlRSA' 53 13 7: PrintableString 'CarlRSA'
: } : }
: } : }
: } : }
66 30 30: SEQUENCE { 62 30 30: SEQUENCE {
68 17 13: UTCTime '990819070000Z' 64 17 13: UTCTime '990919010902Z'
83 17 13: UTCTime '391231235959Z' 79 17 13: UTCTime '391231235959Z'
: } : }
98 30 17: SEQUENCE { 94 30 17: SEQUENCE {
100 31 15: SET { 96 31 15: SET {
102 30 13: SEQUENCE { 98 30 13: SEQUENCE {
104 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 100 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
109 13 6: PrintableString 'BobRSA' 105 13 6: PrintableString 'BobRSA'
: } : }
: } : }
: } : }
117 30 159: SEQUENCE { 113 30 159: SEQUENCE {
120 30 13: SEQUENCE { 116 30 13: SEQUENCE {
122 06 9: OBJECT IDENTIFIER rsaEncryption (1 2 840 113549 1 1 1) 118 06 9: OBJECT IDENTIFIER rsaEncryption (1 2 840 113549 1 1 1)
: (PKCS #1) : (PKCS #1)
133 05 0: NULL 129 05 0: NULL
: } : }
135 03 141: BIT STRING 0 unused bits, encapsulates { 131 03 141: BIT STRING 0 unused bits, encapsulates {
139 30 137: SEQUENCE { 135 30 137: SEQUENCE {
142 02 129: INTEGER 138 02 129: INTEGER
: 00 CA 5C E1 2E EC CF C1 3B 5D 10 1B DF 54 35 71 : 00 A9 E1 67 98 3F 39 D5 5F F2 A0 93 41 5E A6 79
: 99 0A 09 D8 3D E4 61 BF A0 BE 0A BE 11 A4 3C B5 : 89 85 C8 35 5D 9A 91 5B FB 1D 01 DA 19 70 26 17
: 38 41 41 48 04 E1 5B B1 17 1C 53 B5 F4 C5 15 D3 : 0F BD A5 22 D0 35 85 6D 7A 98 66 14 41 5C CF B7
: FE 0C FB 0C AC EA 80 18 36 03 7E 41 93 53 D7 40 : B7 08 3B 09 C9 91 B8 19 69 37 6D F9 65 1E 7B D9
: 74 49 DB D9 C6 AF FE D6 CA 0D CA 01 84 8F A1 E9 : A9 33 24 A3 7F 3B BB AF 46 01 86 36 34 32 CB 07
: A3 00 21 27 51 D5 40 19 AA E3 C0 30 78 5B A0 B2 : 03 59 52 FC 85 8B 31 04 B8 CC 18 08 14 48 E6 4F
: E6 C1 2D 24 36 CB AE 44 10 82 B0 DD 74 D7 F6 EB : 1C FB 5D 60 C4 E0 5C 1F 53 D3 7F 53 D8 69 01 F1
: 51 27 B2 A7 B6 AD 78 CA A7 1B 59 51 18 EF 28 0C : 05 F8 7A 70 D1 BE 83 C6 5F 38 CF 1C 2C AA 6A A7
: 53 : EB
274 02 3: INTEGER 65537 270 02 3: INTEGER 65537
: } : }
: } : }
: } : }
279 A3 96: [3] { 275 A3 96: [3] {
281 30 94: SEQUENCE { 277 30 94: SEQUENCE {
283 30 12: SEQUENCE { 279 30 12: SEQUENCE {
285 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19) 281 06 3: OBJECT IDENTIFIER basicConstraints (2 5 29 19)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
290 01 1: BOOLEAN TRUE 286 01 1: BOOLEAN TRUE
293 04 2: OCTET STRING, encapsulates { 289 04 2: OCTET STRING, encapsulates {
295 30 0: SEQUENCE {} 291 30 0: SEQUENCE {}
: } : }
: } : }
297 30 14: SEQUENCE { 293 30 14: SEQUENCE {
299 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15) 295 06 3: OBJECT IDENTIFIER keyUsage (2 5 29 15)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
304 01 1: BOOLEAN TRUE 300 01 1: BOOLEAN TRUE
307 04 4: OCTET STRING, encapsulates { 303 04 4: OCTET STRING, encapsulates {
309 03 2: BIT STRING 5 unused bits 305 03 2: BIT STRING 5 unused bits
: '100'B : '100'B (bit 2)
: } : }
: } : }
313 30 31: SEQUENCE { 309 30 31: SEQUENCE {
315 06 3: OBJECT IDENTIFIER authorityKeyIdentifier (2 5 29 35) 311 06 3: OBJECT IDENTIFIER authorityKeyIdentifier (2 5 29 35)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
320 04 24: OCTET STRING, encapsulates { 316 04 24: OCTET STRING, encapsulates {
322 30 22: SEQUENCE { 318 30 22: SEQUENCE {
324 80 20: [0] 320 80 20: [0]
: E9 E0 90 27 AC 78 20 7A 9A D3 4C F2 : E9 E0 90 27 AC 78 20 7A 9A D3 4C F2 42 37 4E 22
42 37 4E 22
: AE 9E 38 BB : AE 9E 38 BB
: } : }
: } : }
: } : }
346 30 29: SEQUENCE { 342 30 29: SEQUENCE {
348 06 3: OBJECT IDENTIFIER subjectKeyIdentifier (2 5 29 14) 344 06 3: OBJECT IDENTIFIER subjectKeyIdentifier (2 5 29 14)
: (X.509 id-ce (2 5 29)) : (X.509 id-ce (2 5 29))
353 04 22: OCTET STRING 349 04 22: OCTET STRING, encapsulates {
: 04 14 E8 F4 B8 67 D8 B3 96 A4 2A F3 11 AA 29 D3 351 04 20: OCTET STRING
: 95 5A 86 16 B4 24 : E8 F4 B8 67 D8 B3 96 A4 2A F3 11 AA 29 D3 95 5A
: 86 16 B4 24
: } : }
: } : }
: } : }
: } : }
377 30 13: SEQUENCE {
379 06 9: OBJECT IDENTIFIER
: sha1withRSAEncryption (1 2 840 113549 1 1 5)
: (PKCS #1)
390 05 0: NULL
: } : }
392 03 129: BIT STRING 0 unused bits 373 30 9: SEQUENCE {
: 2B 53 8A E0 38 69 0C 19 2D AA D9 42 67 BE 58 49 375 06 5: OBJECT IDENTIFIER sha-1WithRSAEncryption (1 3 14 3 2 29)
: A9 58 4C 42 F1 F5 68 B6 4E 4D 07 A4 9E B2 DB D0 : (Oddball OIW OID)
: 95 DF 4C F0 EF 5F 23 D6 90 7C 3F 62 92 86 E4 D2 382 05 0: NULL
: 64 AB 2E B5 CA 5D 58 57 04 DF 39 29 73 B0 CD A5 : }
: 6B 22 75 C9 5D D5 0B FF C9 B8 7B F0 09 2C A1 86 384 03 129: BIT STRING 0 unused bits
: F3 75 CD 54 67 AD 8B 1E 7B EC 7E AB 25 2B 14 71 : 09 21 6A 3B 62 50 DF 62 41 5E 12 40 09 14 C3 B5
: 98 D1 19 16 F0 60 EB 3B 3C F4 0F 24 98 7A A4 A4 : E4 28 2E 50 77 FA 56 66 B3 A2 96 B6 0A 01 AE A6
: BA E6 C2 4E 80 07 EA C4 93 92 8B 49 17 FE 42 58 : 38 E5 BD 6B E7 F2 3E 6D B0 A5 EF CC 87 AC AB 25
: A4 BB DA E2 1A 81 B7 B9 15 B3 6C DA D1 13 D5 9F
: 0F D5 4B 7A 8D 54 D8 5A DC 07 01 D1 05 41 0D 0A
: 61 47 80 F1 75 0F F8 22 1B 50 92 33 FE 08 05 50
: 6D 7B 03 00 03 F1 2D 4B FE 20 62 C7 20 77 05 42
: 23 DB A8 C7 AD DE 71 1B D1 2A 99 82 A6 65 EB 7E
: } : }
CarlDSSSelf = CarlDSSSelf =
0 30 667: SEQUENCE { 0 30 667: SEQUENCE {
4 30 602: SEQUENCE { 4 30 602: SEQUENCE {
8 A0 3: [0] { 8 A0 3: [0] {
10 02 1: INTEGER 2 10 02 1: INTEGER 2
: } : }
13 02 1: INTEGER 1 13 02 1: INTEGER 1
16 30 9: SEQUENCE { 16 30 9: SEQUENCE {
skipping to change at line 2220 skipping to change at line 2233
: 54 68 69 73 20 69 73 20 73 6F 6D 65 20 73 61 6D : 54 68 69 73 20 69 73 20 73 6F 6D 65 20 73 61 6D
: 70 6C 65 20 63 6F 6E 74 65 6E 74 2E : 70 6C 65 20 63 6F 6E 74 65 6E 74 2E
: } : }
: } : }
5. Signed-data 5. Signed-data
5.1 Basic signed content, DSS 5.1 Basic signed content, DSS
A SignedData with no attribute certificates, signed by Alice using A SignedData with no attribute certificates, signed by Alice using
DH-DSS, just her certificate (not Carl's root cert), no CRL. The DSS, just her certificate (not Carl's root cert), no CRL. The
message is ExContent, and is included in the eContent. There are no message is ExContent, and is included in the eContent. There are no
signed or unsigned attributes. signed or unsigned attributes.
0 30 927: SEQUENCE { 0 30 927: SEQUENCE {
4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2) 4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2)
: (PKCS #7) : (PKCS #7)
15 A0 912: [0] { 15 A0 912: [0] {
19 30 908: SEQUENCE { 19 30 908: SEQUENCE {
23 02 1: INTEGER 1 23 02 1: INTEGER 1
26 31 11: SET { 26 31 11: SET {
skipping to change at line 2661 skipping to change at line 2674
: 6F D0 07 D7 A2 B1 62 4C E3 8F AF FD E0 D5 5D C7 : 6F D0 07 D7 A2 B1 62 4C E3 8F AF FD E0 D5 5D C7
: } : }
: } : }
: } : }
: } : }
: } : }
5.3 Basic signed content, detached content 5.3 Basic signed content, detached content
Same as 5.1, except with no eContent. A SignedData with no attribute Same as 5.1, except with no eContent. A SignedData with no attribute
certificates, signed by Alice using DH-DSS, just her certificate (not certificates, signed by Alice using DSS, just her certificate (not
Carl's root cert), no CRL. The message is ExContent, but the eContent Carl's root cert), no CRL. The message is ExContent, but the eContent
is not included. There are no signed or unsigned attributes. is not included. There are no signed or unsigned attributes.
0 30 895: SEQUENCE { 0 30 895: SEQUENCE {
4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2) 4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2)
: (PKCS #7) : (PKCS #7)
15 A0 880: [0] { 15 A0 880: [0] {
19 30 876: SEQUENCE { 19 30 876: SEQUENCE {
23 02 1: INTEGER 1 23 02 1: INTEGER 1
26 31 11: SET { 26 31 11: SET {
skipping to change at line 2898 skipping to change at line 2911
: } : }
: } : }
: } : }
: } : }
: } : }
5.4 Fancier signed content 5.4 Fancier signed content
Same as 5.1, but includes Carl's root cert, Carl's CRL, some signed and Same as 5.1, but includes Carl's root cert, Carl's CRL, some signed and
unsigned attributes (Countersignature by Diane). A SignedData with no unsigned attributes (Countersignature by Diane). A SignedData with no
attribute certificates, signed by Alice using DH-DSS, her certificate attribute certificates, signed by Alice using DSS, her certificate
and Carl's root cert, Carl's DSS CRL. The message is ExContent, and is and Carl's root cert, Carl's DSS CRL. The message is ExContent, and is
included in the eContent. The signed attributes are Content Type, included in the eContent. The signed attributes are Content Type,
Message Digest and Signing Time; the unsigned attributes are content Message Digest and Signing Time; the unsigned attributes are content
hint and counter signature. hint and counter signature.
0 30 2727: SEQUENCE { 0 30 2727: SEQUENCE {
4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2) 4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2)
: (PKCS #7) : (PKCS #7)
15 A0 2712: [0] { 15 A0 2712: [0] {
19 30 2708: SEQUENCE { 19 30 2708: SEQUENCE {
skipping to change at line 3810 skipping to change at line 3823
: 6F D0 07 D7 A2 B1 62 4C E3 8F AF FD E0 D5 5D C7 : 6F D0 07 D7 A2 B1 62 4C E3 8F AF FD E0 D5 5D C7
: } : }
: } : }
: } : }
: } : }
: } : }
5.6 Multiple signers 5.6 Multiple signers
Similar to 5.1, but the message is also signed by Diane. Two Similar to 5.1, but the message is also signed by Diane. Two
SignedDatas (one for Alice, one for Diane) with no attribute signerInfos (one for Alice, one for Diane) with no attribute
certificates, each signed using DH-DSS, Alice's and Diane's certificate certificates, each signed using DSS, Alice's and Diane's certificate
(not Carl's root cert), no CRL. The message is ExContent, and is (not Carl's root cert), no CRL. The message is ExContent, and is
included in the eContent. There are no signed or unsigned attributes. included in the eContent. There are no signed or unsigned attributes.
0 30 1477: SEQUENCE { 0 30 1477: SEQUENCE {
4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2) 4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2)
: (PKCS #7) : (PKCS #7)
15 A0 1462: [0] { 15 A0 1462: [0] {
19 30 1458: SEQUENCE { 19 30 1458: SEQUENCE {
23 02 1: INTEGER 1 23 02 1: INTEGER 1
26 31 11: SET { 26 31 11: SET {
skipping to change at line 4201 skipping to change at line 4214
: } : }
: } : }
: } : }
: } : }
: } : }
5.7 Signing using SKI 5.7 Signing using SKI
Same as 5.1, but the signature uses the SKI instead of the Same as 5.1, but the signature uses the SKI instead of the
issuer/serial number in the cert. A SignedData with no attribute issuer/serial number in the cert. A SignedData with no attribute
certificates, signed by Alice using DH-DSS, just her certificate (not certificates, signed by Alice using DSS, just her certificate (not
Carl's root cert), identified by the SKI, no CRL. The message is Carl's root cert), identified by the SKI, no CRL. The message is
ExContent, and is included in the eContent. There are no signed or ExContent, and is included in the eContent. There are no signed or
unsigned attributes. unsigned attributes.
0 30 711: SEQUENCE { 0 30 711: SEQUENCE {
4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2) 4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2)
: (PKCS #7) : (PKCS #7)
15 A0 696: [0] { 15 A0 696: [0] {
19 30 692: SEQUENCE { 19 30 692: SEQUENCE {
23 02 1: INTEGER 3 23 02 1: INTEGER 3
skipping to change at line 4397 skipping to change at line 4410
: } : }
: } : }
5.8 S/MIME multipart/signed message 5.8 S/MIME multipart/signed message
A full S/MIME message, including MIME, that includes the body part from A full S/MIME message, including MIME, that includes the body part from
5.3 and the body containing the content of the message. 5.3 and the body containing the content of the message.
MIME-Version: 1.0 MIME-Version: 1.0
Content-Type: multipart/signed; Content-Type: multipart/signed;
protocol="application/x-pkcs7-signature"; protocol="application/pkcs7-signature";
micalg=SHA1; micalg=SHA1;
boundary="----=_NextPart_000_0000_01BEF8B8.4F7D5F80" boundary="----=_NextPart_000_0000_01BEF8B8.4F7D5F80"
------=_NextPart_000_0000_01BEF8B8.4F7D5F80 ------=_NextPart_000_0000_01BEF8B8.4F7D5F80
This is some sample content. This is some sample content.
------=_NextPart_000_0000_01BEF8B8.4F7D5F80 ------=_NextPart_000_0000_01BEF8B8.4F7D5F80
Content-Type: application/x-pkcs7-signature; Content-Type: application/pkcs7-signature;
name="smime.p7s" name="smime.p7s"
Content-Transfer-Encoding: base64 Content-Transfer-Encoding: base64
Content-Disposition: attachment; Content-Disposition: attachment;
filename="smime.p7s" filename="smime.p7s"
MIGXBgkqhkiG9w0BBwKggYkwgYYCAQExCzAJBgUrDgMCGgUAMAsGCSqGSIb3DQEHAT MIGXBgkqhkiG9w0BBwKggYkwgYYCAQExCzAJBgUrDgMCGgUAMAsGCSqGSIb3DQEHAT
FnMGUCAQEwGDASMRAwDgYDVQQDEwdDYXJsRFNTAgIAyDAJBgUrDgMCGgUAMAkGByqG FnMGUCAQEwGDASMRAwDgYDVQQDEwdDYXJsRFNTAgIAyDAJBgUrDgMCGgUAMAkGByqG
SM44BAEEMDAtAhReXmtpBKJiXYtFslX5dRwSToiIIQIVAKPBSCPgCDVvJSJ6HrYUvO SM44BAEEMDAtAhReXmtpBKJiXYtFslX5dRwSToiIIQIVAKPBSCPgCDVvJSJ6HrYUvO
R1kdslAA== R1kdslAA==
skipping to change at line 4541 skipping to change at line 4554
: sMIMECapabilities (1 2 840 113549 1 9 15) : sMIMECapabilities (1 2 840 113549 1 9 15)
: (PKCS #9 (1 2 840 113549 1 9). : (PKCS #9 (1 2 840 113549 1 9).
326 31 61: SET { 326 31 61: SET {
328 30 59: SEQUENCE { 328 30 59: SEQUENCE {
330 30 7: SEQUENCE { 330 30 7: SEQUENCE {
332 06 5: OBJECT IDENTIFIER '1 2 3 4 5 6' 332 06 5: OBJECT IDENTIFIER '1 2 3 4 5 6'
: } : }
339 30 48: SEQUENCE { 339 30 48: SEQUENCE {
341 06 6: OBJECT IDENTIFIER '1 2 3 4 5 6 77' 341 06 6: OBJECT IDENTIFIER '1 2 3 4 5 6 77'
349 04 38: OCTET STRING 349 04 38: OCTET STRING
: 53 6D 69 6D 65 20 43 61 70 61 62 69 6C : 53 6D 69 6D 65 20 43 61 70 61 62 69
69 74 69 6C 69 74 69
: 65 73 20 70 61 72 61 6D 65 74 65 72 : 65 73 20 70 61 72 61 6D 65 74 65 72
73 20 62 75 73 20 62 75
: 66 66 65 72 20 32 : 66 66 65 72 20 32
: } : }
: } : }
: } : }
: } : }
389 30 109: SEQUENCE { 389 30 109: SEQUENCE {
391 06 11: OBJECT IDENTIFIER 391 06 11: OBJECT IDENTIFIER
: id-aa-securityLabel (1 2 840 113549 1 9 16 2 2) : id-aa-securityLabel (1 2 840 113549 1 9 16 2 2)
skipping to change at line 4823 skipping to change at line 4836
: } : }
: } : }
: } : }
: } : }
: } : }
: } : }
5.11 SignedData with Certificates Only 5.11 SignedData with Certificates Only
CA SignedData message with no content or signature, containing only CA SignedData message with no content or signature, containing only
certificates. Alices's and Carl's certificates.
0 30 1674: SEQUENCE { 0 30 1674: SEQUENCE {
4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2) 4 06 9: OBJECT IDENTIFIER signedData (1 2 840 113549 1 7 2)
: (PKCS #7) : (PKCS #7)
15 A0 1659: [0] { 15 A0 1659: [0] {
19 30 1655: SEQUENCE { 19 30 1655: SEQUENCE {
23 02 1: INTEGER 1 23 02 1: INTEGER 1
26 31 0: SET {} 26 31 0: SET {}
28 30 11: SEQUENCE { 28 30 11: SEQUENCE {
30 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1) 30 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1)
skipping to change at line 5350 skipping to change at line 5363
3DES CEK 3DES CEK
1c b6 57 1a 25 bc f8 13 5b 01 1a d5 a2 46 31 7a 1c b6 57 1a 25 bc f8 13 5b 01 1a d5 a2 46 31 7a
85 fe 4f 62 45 4a 2a 43 85 fe 4f 62 45 4a 2a 43
6.2 Basic encrypted content, TripleDES and RSA 6.2 Basic encrypted content, TripleDES and RSA
Same as 6.1, except with RSA for key management. An EnvelopedData from Same as 6.1, except with RSA for key management. An EnvelopedData from
Alice to Bob of ExContent using TripleDES for encrypting and RSA for Alice to Bob of ExContent using TripleDES for encrypting and RSA for
key management. Does not have a OriginatorInfo. key management. Does not have a OriginatorInfo.
0 30 286: SEQUENCE { 0 30 NDEF: SEQUENCE {
4 06 9: OBJECT IDENTIFIER envelopedData (1 2 840 113549 1 7 3) 2 06 9: OBJECT IDENTIFIER envelopedData (1 2 840 113549 1 7 3)
: (PKCS #7) : (PKCS #7)
15 A0 271: [0] { 13 A0 NDEF: [0] {
19 30 267: SEQUENCE { 15 30 NDEF: SEQUENCE {
23 02 1: INTEGER 0 17 02 1: INTEGER 0
26 31 192: SET { 20 31 192: SET {
29 30 189: SEQUENCE { 23 30 189: SEQUENCE {
32 02 1: INTEGER 0 26 02 1: INTEGER 0
35 30 38: SEQUENCE { 29 30 38: SEQUENCE {
37 30 18: SEQUENCE { 31 30 18: SEQUENCE {
39 31 16: SET { 33 31 16: SET {
41 30 14: SEQUENCE { 35 30 14: SEQUENCE {
43 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 37 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
48 13 7: PrintableString 'CarlRSA' 42 13 7: PrintableString 'CarlRSA'
: } : }
: } : }
: } : }
57 02 16: INTEGER 51 02 16: INTEGER
: 46 34 6B C7 80 00 56 BC 11 D3 6E 2E CD 5D 71 D0 : 46 34 6B C7 80 00 56 BC 11 D3 6E 2E CD 5D 71 D0
: } : }
75 30 13: SEQUENCE { 69 30 13: SEQUENCE {
77 06 9: OBJECT IDENTIFIER 71 06 9: OBJECT IDENTIFIER
: rsaEncryption (1 2 840 113549 1 1 1) : rsaEncryption (1 2 840 113549 1 1 1)
: (PKCS #1) : (PKCS #1)
88 05 0: NULL 82 05 0: NULL
: } : }
90 04 128: OCTET STRING 84 04 128: OCTET STRING
: 59 56 EB AE 9D 30 36 07 53 2A E0 F1 F2 2E 20 93 : 5C DE 6D 75 D0 5E E6 68 76 11 47 1B 5B 89 2E 55
: DC AE ED E4 33 85 F2 1A AC 05 86 20 A9 5D C8 CB : AD 73 05 AA 28 02 F8 02 DA 4D FE F4 35 20 0E 6B
: F0 AC 3F FD 66 71 F7 42 FF 2C 30 52 BC 6D B2 D6 : 68 EB D6 2B AE 88 58 3A D3 AC 03 7B 30 5E 88 44
: E9 4A B4 D1 8D BD 97 53 79 0D A3 79 5F AE 6B 7A : 3B FF 33 DC DD BC BD 91 C3 9D F5 73 6E 33 E4 9F
: 51 91 8F D4 3D AC 52 66 7E C9 8B 50 30 3B 6F B5 : 2C 42 A0 8E 25 74 29 26 50 71 70 2F 51 08 AE 2D
: AB 6D 1E C4 19 EA D0 77 25 F7 8A 02 AC F4 B7 C0 : 5E C1 A5 16 06 33 4F A9 23 0A 33 E5 96 3B D0 F8
: 6D 74 1B 28 8E F2 60 61 E2 7A 3B C3 A4 BC 4E C8 : 83 BE 0A 29 01 0A CF 53 13 92 18 A6 F7 B1 3C 82
: 88 9B 78 2E 66 7E DF 5C 82 A6 D4 49 E8 F4 4F 48 : 78 59 67 C8 65 E4 26 0E 52 37 00 50 EA 39 23 E7
: } : }
: } : }
221 30 67: SEQUENCE { 215 30 NDEF: SEQUENCE {
223 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1) 217 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1)
: (PKCS #7) : (PKCS #7)
234 30 20: SEQUENCE { 228 30 20: SEQUENCE {
236 06 8: OBJECT IDENTIFIER des-EDE3-CBC (1 2 840 113549 3 7) 230 06 8: OBJECT IDENTIFIER des-EDE3-CBC (1 2 840 113549 3 7)
: (RSADSI encryptionAlgorithm (1 2 840 113549 3)) : (RSADSI encryptionAlgorithm (1 2 840 113549 3))
246 04 8: OCTET STRING 240 04 8: OCTET STRING
: 6A 45 73 9E ED 7D 11 37 : E1 D1 EB E0 26 CA 58 49
: }
250 A0 NDEF: [0] {
252 04 32: OCTET STRING
: 02 3A 0A 0B BE B7 31 1D D4 C3 EB CA 91 18 AD 89
: 7B 2D F8 B1 FB FD BF 2A 52 81 77 DA 9F 49 7F 00
: } : }
256 80 32: [0]
: FC 77 3C 76 73 24 F5 63 87 75 DD 7B 5C C4 10 9D
: CA DB 04 47 93 94 27 A2 B4 8C E0 D7 83 9A 1E 48
: } : }
: } : }
: } : }
: } : }
6.3 Basic encrypted content, RC2/40 and RSA 6.3 Basic encrypted content, RC2/40 and RSA
Same as 6.1, except using RC2/40 for encryption and RSA for key Same as 6.1, except using RC2/40 for encryption and RSA for key
management. An EnvelopedData from Alice to Bob of ExContent using management. An EnvelopedData from Alice to Bob of ExContent using
RC2/40 for encrypting and RSA for key management. Does not have a RC2/40 for encrypting and RSA for key management. Does not have a
OriginatorInfo or any attributes. OriginatorInfo or any attributes.
0 30 NDEF: SEQUENCE { 0 30 292: SEQUENCE {
2 06 9: OBJECT IDENTIFIER envelopedData (1 2 840 113549 1 7 3) 4 06 9: OBJECT IDENTIFIER envelopedData (1 2 840 113549 1 7 3)
: (PKCS #7) : (PKCS #7)
13 A0 NDEF: [0] { 15 A0 277: [0] {
15 30 NDEF: SEQUENCE { 19 30 273: SEQUENCE {
17 02 1: INTEGER 0 23 02 1: INTEGER 0
20 31 192: SET { 26 31 192: SET {
23 30 189: SEQUENCE { 29 30 189: SEQUENCE {
26 02 1: INTEGER 0 32 02 1: INTEGER 0
29 30 38: SEQUENCE { 35 30 38: SEQUENCE {
31 30 18: SEQUENCE { 37 30 18: SEQUENCE {
33 31 16: SET { 39 31 16: SET {
35 30 14: SEQUENCE { 41 30 14: SEQUENCE {
37 06 3: OBJECT IDENTIFIER commonName (2 5 4 3) 43 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4)) : (X.520 id-at (2 5 4))
42 13 7: PrintableString 'CarlRSA' 48 13 7: PrintableString 'CarlRSA'
: } : }
: } : }
: } : }
51 02 16: INTEGER 57 02 16: INTEGER
: 46 34 6B C7 80 00 56 BC 11 D3 6E 2E CD 5D 71 D0 : 46 34 6B C7 80 00 56 BC 11 D3 6E 2E CD 5D 71 D0
: } : }
69 30 13: SEQUENCE { 75 30 13: SEQUENCE {
71 06 9: OBJECT IDENTIFIER 77 06 9: OBJECT IDENTIFIER
: rsaEncryption (1 2 840 113549 1 1 1) : rsaEncryption (1 2 840 113549 1 1 1)
: (PKCS #1) : (PKCS #1)
82 05 0: NULL 88 05 0: NULL
: } : }
84 04 128: OCTET STRING 90 04 128: OCTET STRING
: 84 00 78 AC A9 6A F9 ED BE 27 7F A1 45 FE 73 4B : 5E FD D1 FD 71 E3 B4 3E B7 59 86 AC 70 6C 84 D7
: 05 54 14 D7 DF 9B 27 11 68 97 E6 32 76 A3 D6 48 : 7F F6 F9 4E 78 6B E6 B0 B5 1E D5 FB 43 76 A7 22
: B4 4D E4 15 B0 BF A8 58 1F 5D F2 5C 30 A8 E9 C7 : 69 67 C9 E2 70 89 73 E4 69 F3 59 43 77 49 04 B3
: 63 E4 95 B4 AB 2A 36 3E 69 9C 59 0D 67 5F F2 82 : 00 C9 F7 EE 41 32 E6 4C 5A C7 40 AF 87 EC E7 32
: 15 21 7B 1A 3B 59 68 AA F1 B0 C6 8C DB 0E B2 54 : 0D 1E 89 7A 97 D3 F5 6A 75 A8 0C 4D 59 B7 92 9B
: DC 33 D1 64 D1 4C A9 74 08 14 11 8A 16 74 6A 3A : E2 4A 64 2E 73 67 4C E6 2F FA 9E 3F B4 11 3C E7
: F0 33 35 1C 34 70 33 BF 0A C6 44 91 C8 B1 21 BC : 3A 4C 23 16 4F E9 27 EE D9 E5 1F 66 57 FC 43 E9
: B1 A3 65 DD 14 BC 05 D7 E2 E7 DC 7F 3A 59 7E 1F : 38 1C EF 5D C9 8E 97 46 2C 6B 19 73 18 18 58 EA
: } : }
: } : }
215 30 NDEF: SEQUENCE { 221 30 73: SEQUENCE {
217 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1) 223 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1)
: (PKCS #7) : (PKCS #7)
228 30 26: SEQUENCE { 234 30 26: SEQUENCE {
230 06 8: OBJECT IDENTIFIER rc2CBC (1 2 840 113549 3 2) 236 06 8: OBJECT IDENTIFIER rc2CBC (1 2 840 113549 3 2)
: (RSADSI encryptionAlgorithm (1 2 840 113549 3)) : (RSADSI encryptionAlgorithm (1 2 840 113549 3))
240 30 14: SEQUENCE { 246 30 14: SEQUENCE {
242 02 2: INTEGER 160 248 02 2: INTEGER 160
246 04 8: OCTET STRING 252 04 8: OCTET STRING
: 9C 04 D2 19 2E 2A 55 A1 : 9C 04 D2 19 2E 2A 55 A1
: } : }
: } : }
256 A0 NDEF: [0] { 262 80 32: [0]
258 04 176: OCTET STRING : 00 83 A9 27 15 EA D5 DC 6A A8 E7 4D E8 FA EA F7
: 8E 87 2E 22 E4 30 61 9B 96 CC EA AD 0C D6 D7 03 : A8 D6 3D 4C 52 62 CB 89 E8 39 E1 F1 77 E5 AB F7
: 1B 14 60 37 8B 1A 80 2C 12 4F 76 B7 76 77 E2 07
: 84 33 0B CC 65 EB 5B 32 9B 68 F3 86 6D 7D B1 A2
: 44 10 1D C0 14 E1 F2 C6 F1 28 17 BA 86 D5 2F 6D
: 37 DF 82 EB D1 2D 24 80 71 62 4D 0D A8 69 10 A9
: E1 45 75 86 4D AB 83 61 5B 70 7D 6D C2 5D F3 80
: 31 D3 70 FD 73 2D 75 4D 93 54 9F 3A A8 A8 DC 30
: 34 FD 49 36 88 97 37 4F 24 0F FB 03 22 4C 64 EA
: 33 EB C5 C6 23 87 01 72 13 6F E7 62 3D 12 62 0D
: FB 44 88 32 24 91 05 46 8D 0E 00 39 8A 14 8A CA
: 19 58 4B 8F BD BB 35 89 AF F9 99 16 91 F0 E7 BD
: }
: } : }
: } : }
: } : }
: } : }
6.4 Encrypted content, two recipients, no shared keying material 6.4 Encrypted content, two recipients, no shared keying material
Same as 6.1, except sent to both Bob and Diane. An EnvelopedData from Same as 6.1, except sent to both Bob and Diane. An EnvelopedData from
Alice to Bob and Diane of ExContent using TripleDES for encrypting and Alice to Bob and Diane of ExContent using TripleDES for encrypting and
Diffie-Hellman for key management. Does not have a OriginatorInfo or Diffie-Hellman for key management. Does not have a OriginatorInfo or
skipping to change at line 5727 skipping to change at line 5731
6.6 Encrypted content, TripleDES and DH, previously-distributed keys 6.6 Encrypted content, TripleDES and DH, previously-distributed keys
Same as 6.1, except sent using a previously-distributed key. An Same as 6.1, except sent using a previously-distributed key. An
EnvelopedData from Alice to Bob of ExContent using TripleDES for EnvelopedData from Alice to Bob of ExContent using TripleDES for
encrypting and Diffie-Hellman for key management, using the encrypting and Diffie-Hellman for key management, using the
MailListTripleDES key. Does not have a OriginatorInfo or any MailListTripleDES key. Does not have a OriginatorInfo or any
attributes. attributes.
Subject: Test subject Subject: Test subject
MIME-Version: 1.0 MIME-Version: 1.0
Content-Type: application/x-pkcs7-mime; Content-Type: application/pkcs7-mime;
name="smime.p7m"; name="smime.p7m";
smime-type=enveloped-data smime-type=enveloped-data
Content-Transfer-Encoding: base64 Content-Transfer-Encoding: base64
Content-Disposition: attachment; Content-Disposition: attachment;
filename="smime.p7m" filename="smime.p7m"
X-MimeOLE: Produced By Microsoft MimeOLE V5.00.2115.300
MIAGCSqGSIb3DQEHA6CAMIACAQIxggFdoYIBBAIBA6CBlaGBkjAJBgcqhkjOPgIBA4 MIAGCSqGSIb3DQEHA6CAMIACAQIxggFdoYIBBAIBA6CBlaGBkjAJBgcqhkjOPgIBA4
GEAAKBgE348O8WYkb+mh9JywImIJ1j0PIj84SnpKclqO31EcScZzkSiQQP+gqphImf GEAAKBgE348O8WYkb+mh9JywImIJ1j0PIj84SnpKclqO31EcScZzkSiQQP+gqphImf
EwIGh7P7ywuoFuxdot8C2X/nDubhrrKImG3Z96h/FAh6/rgA6P10r2yesV1QvqfGgY EwIGh7P7ywuoFuxdot8C2X/nDubhrrKImG3Z96h/FAh6/rgA6P10r2yesV1QvqfGgY
Bh9+o9zq/S1+Q8ssFH9j1nZzTLLL3rrG8W4ztmu4qX+Q89MB8GCyqGSIb3DQEJEAMF Bh9+o9zq/S1+Q8ssFH9j1nZzTLLL3rrG8W4ztmu4qX+Q89MB8GCyqGSIb3DQEJEAMF
MBAGCyqGSIb3DQEJEAMHAgE6MEYwRDAYMBIxEDAOBgNVBAMTB0NhcmxEU1MCAgDJBC MBAGCyqGSIb3DQEJEAMHAgE6MEYwRDAYMBIxEDAOBgNVBAMTB0NhcmxEU1MCAgDJBC
hTEv/IiYb58fJpBc1MQAJ1FSG33LdFbpRq8QirMU12JiHd9qAJjj9ColMCAQQwEwQR hTEv/IiYb58fJpBc1MQAJ1FSG33LdFbpRq8QirMU12JiHd9qAJjj9ColMCAQQwEwQR
TWFpbExpc3RUcmlwbGVERVMwDwYLKoZIhvcNAQkQAwYFAAQo/JV25qipslbuubZDLs TWFpbExpc3RUcmlwbGVERVMwDwYLKoZIhvcNAQkQAwYFAAQo/JV25qipslbuubZDLs
lEB93Y4rGtOJHpymNu+u5Fe7bpypVtjw4VWjCABgkqhkiG9w0BBwEwGQYIKoZIhvcN lEB93Y4rGtOJHpymNu+u5Fe7bpypVtjw4VWjCABgkqhkiG9w0BBwEwGQYIKoZIhvcN
AwIwDQIBOgQIj3hP9Fg2yEqggAQg4lYLOgn0NuOrSALLvtN4NzeVtYJ07hsW2OZ7Fq AwIwDQIBOgQIj3hP9Fg2yEqggAQg4lYLOgn0NuOrSALLvtN4NzeVtYJ07hsW2OZ7Fq
QNmuoAAAAAAAAAAAAA QNmuoAAAAAAAAAAAAA
6.7 Encrypted content, RC2/40 and RSA, previously-distributed keys 6.7 Encrypted content, RC2/40 and RSA, previously-distributed keys
Same as 6.1, except sent using a previously-distributed key. An Same as 6.1, except sent using a previously-distributed key. An
EnvelopedData from Alice to Bob of ExContent using RC2/40 for EnvelopedData from Alice to Bob of ExContent using RC2/40 for
encrypting and RSA for key management, using the MailListRC2 key. Does encrypting and RSA for key management, using the MailListRC2 key. Does
not have a OriginatorInfo or any attributes. not have a OriginatorInfo or any attributes.
XXXXX 0 30 357: SEQUENCE {
4 06 9: OBJECT IDENTIFIER envelopedData (1 2 840 113549 1 7 3)
: (PKCS #7)
15 A0 342: [0] {
19 30 338: SEQUENCE {
23 02 1: INTEGER 2
26 31 256: SET {
30 30 189: SEQUENCE {
33 02 1: INTEGER 0
36 30 38: SEQUENCE {
38 30 18: SEQUENCE {
40 31 16: SET {
42 30 14: SEQUENCE {
44 06 3: OBJECT IDENTIFIER commonName (2 5 4 3)
: (X.520 id-at (2 5 4))
49 13 7: PrintableString 'CarlRSA'
: }
: }
: }
58 02 16: INTEGER
: 46 34 6B C7 80 00 56 BC 11 D3 6E 2E CD 5D 71 D0
: }
76 30 13: SEQUENCE {
78 06 9: OBJECT IDENTIFIER
: rsaEncryption (1 2 840 113549 1 1 1)
: (PKCS #1)
89 05 0: NULL
: }
91 04 128: OCTET STRING
: 94 26 42 88 C6 8B B6 78 20 FF 82 57 2A 41 98 D1
: 68 08 3A 04 A7 CE E4 86 D8 32 7D FD 8D E1 29 AA
: 0F 74 71 3F 1F BC 85 B2 D0 B7 D8 B7 61 C3 30 71
: AA 7E 6A 23 A4 CA A8 CC 6A 54 F4 DD 55 02 D1 70
: 4E 1A FF 87 60 8D C7 05 99 BF 68 5C F1 A2 AF 98
: 39 70 16 B3 9C 65 19 EA D9 C1 33 9C F6 3E 80 62
: 52 B8 A9 7B E7 CE D4 79 49 0F 13 06 39 73 CA D9
: B8 57 BC E0 F9 31 AB 9C 65 4D 40 13 70 E3 B1 30
: }
222 A2 62: [2] {
224 02 1: INTEGER 4
227 30 13: SEQUENCE {
229 04 11: OCTET STRING 'MailListRC2'
: }
242 30 16: SEQUENCE {
244 06 11: OBJECT IDENTIFIER
: id-alg-CMSRC2wrap (1 2 840 113549 1 9 16 3 7)
: (S/MIME Algorithms (1 2 840 113549 1 9 16 3))
257 02 1: INTEGER 58
: }
260 04 24: OCTET STRING
: 77 14 AF 93 12 27 F8 3D 1E 72 55 1E C4 3A 5F 9E
: 95 73 06 1B F8 E7 E8 8D
: }
: }
286 30 73: SEQUENCE {
288 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1)
: (PKCS #7)
299 30 26: SEQUENCE {
301 06 8: OBJECT IDENTIFIER rc2CBC (1 2 840 113549 3 2)
: (RSADSI encryptionAlgorithm (1 2 840 113549 3))
311 30 14: SEQUENCE {
313 02 2: INTEGER 160
317 04 8: OCTET STRING
: 9C 04 D2 19 2E 2A 55 A1
: }
: }
327 80 32: [0]
: 5E 28 D5 E1 A2 3B 9E 8F 7A 2B 83 D2 ED EE 7F B0
: 5B 13 A1 9E 4C B9 57 9D 2F 4A 9A 18 45 F4 51 CB
: }
: }
: }
: }
6.8 S/MIME application/pkcs7-mime encrypted message 6.8 S/MIME application/pkcs7-mime encrypted message
A full S/MIME message, including MIME, that includes the body part from A full S/MIME message, including MIME, that includes the body part from
6.1. 6.1.
MIME-Version: 1.0 MIME-Version: 1.0
Message-Id: <00103112005203.00349@amyemily.ig.com> Message-Id: <00103112005203.00349@amyemily.ig.com>
Date: Tue, 31 Oct 2000 12:00:52 -0600 (Central Standard Time) Date: Tue, 31 Oct 2000 12:00:52 -0600 (Central Standard Time)
From: User1 From: User1
To: User2 To: User2
Subject: Example 6.8 Subject: Example 6.8
Content-Type: Application/x-pkcs7-mime;name=smime.p7m;filename=smime.p7m Content-Type: Application/pkcs7-mime;name=smime.p7m;filename=smime.p7m
Content-Transfer-Encoding: base64 Content-Transfer-Encoding: base64
Content-Description: attachment;filename=smime.p7m Content-Description: attachment;filename=smime.p7m
MIIEYQYJKoZIhvcNAQcDoIIEUjCCBE4CAQKgggLxoIIC7TCCAukwggKooAMCAQICAgDUMAkGByqG MIIEYQYJKoZIhvcNAQcDoIIEUjCCBE4CAQKgggLxoIIC7TCCAukwggKooAMCAQICAgDUMAkGByqG
SM44BAMwEjEQMA4GA1UEAxMHQ2FybERTUzAeFw05OTA4MTcwMjE3MTZaFw0zOTEyMzEyMzU5NTla SM44BAMwEjEQMA4GA1UEAxMHQ2FybERTUzAeFw05OTA4MTcwMjE3MTZaFw0zOTEyMzEyMzU5NTla
MBIxEDAOBgNVBAMTB0VyaWNhREgwggHEMIIBOAYHKoZIzj4CATCCASsCgYEA7CzNpO+aJi9ip7sj MBIxEDAOBgNVBAMTB0VyaWNhREgwggHEMIIBOAYHKoZIzj4CATCCASsCgYEA7CzNpO+aJi9ip7sj
Td8rJcFo0p6pRVs28ZSJGq99ESSdPbk8KejXI4Azpp5FAruqzJ4oBZWgsxd2wfclNWECQZInDF6u Td8rJcFo0p6pRVs28ZSJGq99ESSdPbk8KejXI4Azpp5FAruqzJ4oBZWgsxd2wfclNWECQZInDF6u
SOXzbjjvkdHPN/6aQJfILTWenZPG+BWvP9p0OrfEk7W5u3ZsH6h+vDqqQwqBZPxj8HtxmPrAOHkQ SOXzbjjvkdHPN/6aQJfILTWenZPG+BWvP9p0OrfEk7W5u3ZsH6h+vDqqQwqBZPxj8HtxmPrAOHkQ
GjMCgYEAugvXdD3nNOVME6eVlrvx5GE3CPsSx/uckXcGmTXwSCSWMxIBfo3sC/aywGOnFcVelYai GjMCgYEAugvXdD3nNOVME6eVlrvx5GE3CPsSx/uckXcGmTXwSCSWMxIBfo3sC/aywGOnFcVelYai
c8VJRjd5YP13BQlIm3CNPAX2zkQsf30bKxXd8wUvvoUgj435tKBFdCv0O51CYjQnJ4GObw9eYoWJ c8VJRjd5YP13BQlIm3CNPAX2zkQsf30bKxXd8wUvvoUgj435tKBFdCv0O51CYjQnJ4GObw9eYoWJ
skipping to change at line 6104 skipping to change at line 6179
: 4D 5E 65 07 69 A5 69 A9 38 F3 7D 50 C9 09 B3 C0 : 4D 5E 65 07 69 A5 69 A9 38 F3 7D 50 C9 09 B3 C0
: } : }
: } : }
: } : }
: } : }
7. Digested-data 7. Digested-data
A DigestedData from Alice to Bob of ExContent using SHA-1. A DigestedData from Alice to Bob of ExContent using SHA-1.
0 30 90: SEQUENCE { 0 30 94: SEQUENCE {
2 06 9: OBJECT IDENTIFIER digestedData (1 2 840 113549 1 7 5) 2 06 9: OBJECT IDENTIFIER digestedData (1 2 840 113549 1 7 5)
: (PKCS #7) : (PKCS #7)
13 A0 77: [0] { 13 A0 81: [0] {
15 30 75: SEQUENCE { 15 30 79: SEQUENCE {
17 02 1: INTEGER 0 17 02 1: INTEGER 0
20 30 7: SEQUENCE { 20 30 7: SEQUENCE {
22 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26) 22 06 5: OBJECT IDENTIFIER sha1 (1 3 14 3 2 26)
: (OIW) : (OIW)
: } : }
29 30 39: SEQUENCE { 29 30 43: SEQUENCE {
31 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1) 31 06 9: OBJECT IDENTIFIER data (1 2 840 113549 1 7 1)
: (PKCS #7) : (PKCS #7)
42 A0 26: [0] { 42 A0 30: [0] {
44 04 24: OCTET STRING 44 04 28: OCTET STRING 'This is some sample content.'
: 54 68 69 73 20 73 6F 6D 65 20 73 61 6D 70 65 20
: 63 6F 6E 74 65 6E 74 2E
: } : }
: } : }
70 04 20: OCTET STRING 74 04 20: OCTET STRING
: 40 6A EC 08 52 79 BA 6E 16 02 2D 9E 06 29 C0 22 : 40 6A EC 08 52 79 BA 6E 16 02 2D 9E 06 29 C0 22
: 96 87 DD 48 : 96 87 DD 48
: } : }
: } : }
: } : }
8. Encrypted-data 8. Encrypted-data
8.1 Simple EncryptedData 8.1 Simple EncryptedData
skipping to change at line 6216 skipping to change at line 6289
: } : }
: } : }
: } : }
: } : }
: } : }
: } : }
: } : }
9. Authenticated-data 9. Authenticated-data
9.1 Authenticated data with no autenticated attributes No examples are given in this section because no one has created them.
An AutenticatedData from Alice to Bob using XXXXXXXXXX with no
authenticated attributes.
XXXXX
9.2 Authenticated data with autenticated attributes
An AutenticatedData from Alice to Bob using XXXXXXXXXX with the
content-type and message-digest authenticated attributes.
XXXXX
10. Key Wrapping 10. Key Wrapping
This section shows the steps needed to wrap keys, as described in This section shows the steps needed to wrap keys, as described in
section 12.6 of [CMS]. section 12.6 of [CMS].
10.1 Wrapping RC2 10.1 Wrapping RC2
This example shows how to wrap an RC2 key. This example shows how to wrap an RC2 key.
skipping to change at line 6705 skipping to change at line 6766
: 99 0A 09 D8 3D E4 61 BF A0 BE 0A BE : 99 0A 09 D8 3D E4 61 BF A0 BE 0A BE
11 A4 3C B5 11 A4 3C B5
: 38 41 41 48 04 E1 5B B1 17 1C 53 B5 : 38 41 41 48 04 E1 5B B1 17 1C 53 B5
F4 C5 15 D3 F4 C5 15 D3
: FE 0C FB 0C AC EA 80 18 36 03 7E 41 : FE 0C FB 0C AC EA 80 18 36 03 7E 41
93 53 D7 40 93 53 D7 40
: 74 49 DB D9 C6 AF FE D6 CA 0D CA 01 : 74 49 DB D9 C6 AF FE D6 CA 0D CA 01
84 8F A1 E9 84 8F A1 E9
: A3 00 21 27 51 D5 40 19 AA E3 C0 30 : A3 00 21 27 51 D5 40 19 AA E3 C0 30
78 5B A0 B2 78 5B A0 B2
: E6 C1 2D 24 36 CB AE 44 10 82 B0 DD 74 D7 F6 : E6 C1 2D 24 36 CB AE 44 10 82 B0 DD
EB 74 D7 F6 EB
: 51 27 B2 A7 B6 AD 78 CA A7 1B 59 51 : 51 27 B2 A7 B6 AD 78 CA A7 1B 59 51
18 EF 28 0C 18 EF 28 0C
: [ Another 1 bytes skipped ] : [ Another 1 bytes skipped ]
448 02 3: INTEGER 65537 448 02 3: INTEGER 65537
: } : }
: } : }
: } : }
453 A3 96: [3] { 453 A3 96: [3] {
455 30 94: SEQUENCE { 455 30 94: SEQUENCE {
457 30 12: SEQUENCE { 457 30 12: SEQUENCE {
skipping to change at line 8139 skipping to change at line 8200
[SMIME-MSG], [CMS], and [SMIME-ESS]. [SMIME-MSG], [CMS], and [SMIME-ESS].
The Perl script in Appendix B writes to the user's local hard drive. A The Perl script in Appendix B writes to the user's local hard drive. A
malicious attacker could modify the Perl script in this document. Be malicious attacker could modify the Perl script in this document. Be
sure to read the Perl code carefully before executing it. sure to read the Perl code carefully before executing it.
A. References A. References
[CMS] Cryptographic Message Syntax, RFC 2630. [CMS] Cryptographic Message Syntax, RFC 2630.
[DVCS] PKIX Data Validation and Certification Server Protocols,
RFC 3029.
[PKIX] PKIX Certificate and CRL Profile, RFC 2459. [PKIX] PKIX Certificate and CRL Profile, RFC 2459.
[SMIME-MSG] S/MIME Version 3 Message Specification. RFC 2633. [SMIME-MSG] S/MIME Version 3 Message Specification. RFC 2633.
[SMIME-ESS] Enhanced Security Services for S/MIME, RFC 2634. [SMIME-ESS] Enhanced Security Services for S/MIME, RFC 2634.
B. Binaries of the Examples B. Binaries of the Examples
This section contains the binaries of the examples shown in the rest of This section contains the binaries of the examples shown in the rest of
the document. The binaries are stored in a modified Base64 format. the document. The binaries are stored in a modified Base64 format.
skipping to change at line 8321 skipping to change at line 8385
|zzf+mkCXyC01np2TxvgVrz/adDq3xJO1ubt2bB+ofrw6qkMKgWT8Y/B7cZj6wDh5EBozAo |zzf+mkCXyC01np2TxvgVrz/adDq3xJO1ubt2bB+ofrw6qkMKgWT8Y/B7cZj6wDh5EBozAo
|GBALoL13Q95zTlTBOnlZa78eRhNwj7Esf7nJF3Bpk18EgkljMSAX6N7Av2ssBjpxXFXpWG |GBALoL13Q95zTlTBOnlZa78eRhNwj7Esf7nJF3Bpk18EgkljMSAX6N7Av2ssBjpxXFXpWG
|onPFSUY3eWD9dwUJSJtwjTwF9s5ELH99GysV3fMFL76FII+N+bSgRXQr9DudQmI0JyeBjm |onPFSUY3eWD9dwUJSJtwjTwF9s5ELH99GysV3fMFL76FII+N+bSgRXQr9DudQmI0JyeBjm
|8PXmKFicztIcORcAZU7nCoklVbbhkiTWKnAiEAw6tKMHmz05dOyvWifcdwo0Xzs6KGBdI+ |8PXmKFicztIcORcAZU7nCoklVbbhkiTWKnAiEAw6tKMHmz05dOyvWifcdwo0Xzs6KGBdI+
|Sfmf2Qqzvr0EIgIgIPxngu7PSqbI5YPSjDuK0kUyEScybIbsZspxrfAZTfc= |Sfmf2Qqzvr0EIgIgIPxngu7PSqbI5YPSjDuK0kUyEScybIbsZspxrfAZTfc=
|<BobPrivDHEncrypt.pri |<BobPrivDHEncrypt.pri
|* BobPrivRSAEncrypt.pri |* BobPrivRSAEncrypt.pri
|* Creator: [JS] |* Creator: [JS]
|>BobPrivRSAEncrypt.pri |>BobPrivRSAEncrypt.pri
|MIICdgIBADANBgkqhkiG9w0BAQEFAASCAmAwggJcAgEAAoGBAORL/xi4JFf0d/9uc3uTcV |MIIChQIBADANBgkqhkiG9w0BAQEFAASCAmAwggJcAgEAAoGBAKnhZ5g/OdVf8qCTQV6meY
|y8MxqSknIj2EFG0M0ROgSzjq+Cnb1RHhd68nYsK4Y5p73XjRpT7OQA1ejsojax7eJQ4jIJ |mFyDVdmpFb+x0B2hlwJhcPvaUi0DWFbXqYZhRBXM+3twg7CcmRuBlpN235ZR572akzJKN/
|ij+fmSWPuE6ruX3VlmXaFqDFvg6uRFvvXvSnKcuC3axE6aqTlCkO+BjWyFde8nbE8hFgOL |O7uvRgGGNjQyywcDWVL8hYsxBLjMGAgUSOZPHPtdYMTgXB9T039T2GkB8QX4enDRvoPGXz
|kbPB2XyWrxAgMBAAECgYEArnPkW19bZlrJ18bvOF9TISovYv7eKZp6hmc2531ieHU9c6C8 |jPHCyqaqfrAgMBAAECgYBnzUhMmg2PmMIbZf8ig5xt8KYGHbztpwOIlPIcaw+LNd4Ogngw
|KQ7zj73Dycm2+LrWE5vDl3rKavC4hWVOD72nqPdUBkG969wgd5DfYZuab3Te6jvUnIdg7X |y+e6alatd8brUXlweQqg9P5F4Kmy9Bnah5jWMIR05PxZbMHGd9ypkdB8MKCixQheIXFD/A
|aE8WowN9XgkBb4gEfDGWvtdXe6Su05tl0CRztfG8gcq8vo9SY/pIECQQD/3wmgVgtCUp7E |0HPfD6bRSeTmPwF1h5HEuYHD09sBvf+iU7o8AsmAX2EAnYh9sDGQJBANDDIsbeopkYdo+N
|TZOzsEm73ueBfSiZ0LFIugs54Rx7IhgztkD2v9yuHdChrQRxWmEKbjvOMNo2n2UlKbunDn |vKZ11mY/1I1FUox29XLE6/BGmvE+XKpVC5va3Wtt+Pw7PAhDk7Vb/s7q/WiEI2Kv8zHCue
|8LAkEA5GloGF/5V9B8ZokPumMdcssgpIF2ZInNfdHCJ6kurHpWmoUH2TADowOrf4iSUCQB |UCQQDQUfweIrdb7bWOAcjXq/JY1PeClPNTqBlFy2bKKBlf4hAr84/sajB0+E0R9KfEILVH
|qhsHHyBMt8l7Vve2wn6rcwJAVzZsj4wEdmy21O4kRAD4gOKvQgGpDxSE+OcA4I+MJ6QtX6 |IdxJAfkKICnwJAiEYH2PAkA0umTJSChXdNdVUN5qSO8bKlocSHseIVnDYDubl6nA7xhmqU
|LlbbVjwK1E6XaRpxlJLkb4d4VLO4cE8K/S2FQmlQJAZKEPrFV0G70NYXsXA82w5qcZHYCv |5iUjiEzuUJiEiUacUgFJlaV/4jbOSnI3vQgLeFAkEAni+zN5r7CwZdV+EJBqRd2ZCWBgVf
|8UFI2Bq2iBSgLHrFdtQPDh96KrJuNwSrOUVzukaoD42CXyIUBc+io/N8gwJAJh4dHKGYK+ |JAZAcpw6iIWchw+dYhKIFmioNRobQ+g4wJhprwMKSDIETukPj3d9NDAlBwJAVxhn1grSta
|TbOOhXbmtzGYhhOvp0SjaLR2hdUOsm4+p9m05lqa97q0sudlE9qNARq6PWqMAnNh1UC6qn |vCunrnVNqcBU+B1O8BiR4yPWnLMcRSyFRVJQA7HCp8JlDV6abXd8vPFfXuC9WN7rOvTKF8
|0W2N+g== |Y0ZB9qANMAsGA1UdDzEEAwIAEA==
|<BobPrivRSAEncrypt.pri |<BobPrivRSAEncrypt.pri
|* CarlPrivDSSSign.pri |* CarlPrivDSSSign.pri
|* Creator: [JS] |* Creator: [JS]
|>CarlPrivDSSSign.pri |>CarlPrivDSSSign.pri
|MIIBSgIBADCCASsGByqGSM44BAEwggEeAoGBALZJGD6KRMEpcZRMAcQSwXp5y1RNqx6B+8 |MIIBSgIBADCCASsGByqGSM44BAEwggEeAoGBALZJGD6KRMEpcZRMAcQSwXp5y1RNqx6B+8
|ZMsw6UCQbrAdSxyHFLx0XAUCVdnPza5G3T4oZIhIJ9uhWVShb2Ru3d9pjSu36KCoq6Fnu5 |ZMsw6UCQbrAdSxyHFLx0XAUCVdnPza5G3T4oZIhIJ9uhWVShb2Ru3d9pjSu36KCoq6Fnu5
|UAFIk4vrJRVRl1Xcj1MOEKlQ/HC3zTBU/dreqKoitaGvi8wCiOeLcF+5reEI1G0pLdbpAh |UAFIk4vrJRVRl1Xcj1MOEKlQ/HC3zTBU/dreqKoitaGvi8wCiOeLcF+5reEI1G0pLdbpAh
|UA3cEv31POCzRgdz4CpL+KXZi5ENUCgYAM7lebS73atgdqdDdPVX+d7bxhDetGWTxWCytb |UA3cEv31POCzRgdz4CpL+KXZi5ENUCgYAM7lebS73atgdqdDdPVX+d7bxhDetGWTxWCytb
|DJHOpWJSacrhbT69v/7ht7krYTyty65F4wasjCKdnESHC8fN8BzZtU5dc96vDskdWlH1T0 |DJHOpWJSacrhbT69v/7ht7krYTyty65F4wasjCKdnESHC8fN8BzZtU5dc96vDskdWlH1T0
skipping to change at line 8496 skipping to change at line 8560
|DwEB/wQEAwIDCDAfBgNVHSMEGDAWgBRwRD6CLm+H3krTdeM9ILxDK5PxHzAdBgNVHQ4EFg |DwEB/wQEAwIDCDAfBgNVHSMEGDAWgBRwRD6CLm+H3krTdeM9ILxDK5PxHzAdBgNVHQ4EFg
|QUJv8ZSMNZM2hWjX7IgGhczzxy3SYwCQYHKoZIzjgEAwMwADAtAhQV6hVD40kihsG75drk |QUJv8ZSMNZM2hWjX7IgGhczzxy3SYwCQYHKoZIzjgEAwMwADAtAhQV6hVD40kihsG75drk
|DrgJ4NVyNQIVAK5PUSlzcXWpgevtnV4AGX7w3lrW |DrgJ4NVyNQIVAK5PUSlzcXWpgevtnV4AGX7w3lrW
|<BobDHEncryptByCarl.cer |<BobDHEncryptByCarl.cer
|* BobRSASignByCarl.cer |* BobRSASignByCarl.cer
|* Creator: [JP] |* Creator: [JP]
|>BobRSASignByCarl.cer |>BobRSASignByCarl.cer
|MIICADCCAW2gAwIBAgIQRjRrx4AAVrwR024uzV1x0DAJBgUrDgMCHQUAMBIxEDAOBgNVBA |MIICADCCAW2gAwIBAgIQRjRrx4AAVrwR024uzV1x0DAJBgUrDgMCHQUAMBIxEDAOBgNVBA
|MTB0NhcmxSU0EwHhcNOTkwOTE5MDEwOTAyWhcNMzkxMjMxMjM1OTU5WjARMQ8wDQYDVQQD |MTB0NhcmxSU0EwHhcNOTkwOTE5MDEwOTAyWhcNMzkxMjMxMjM1OTU5WjARMQ8wDQYDVQQD
|EwZCb2JSU0EwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAMpc4S7sz8E7XRAb31Q1cZ |EwZCb2JSU0EwgZ8wDQYJKoZIhvcNAQEBBQADgY0AMIGJAoGBAKnhZ5g/OdVf8qCTQV6meY
|kKCdg95GG/oL4KvhGkPLU4QUFIBOFbsRccU7X0xRXT/gz7DKzqgBg2A35Bk1PXQHRJ29nG |mFyDVdmpFb+x0B2hlwJhcPvaUi0DWFbXqYZhRBXM+3twg7CcmRuBlpN235ZR572akzJKN/
|r/7Wyg3KAYSPoemjACEnUdVAGarjwDB4W6Cy5sEtJDbLrkQQgrDddNf261Ensqe2rXjKpx |O7uvRgGGNjQyywcDWVL8hYsxBLjMGAgUSOZPHPtdYMTgXB9T039T2GkB8QX4enDRvoPGXz
|tZURjvKAxTAgMBAAGjYDBeMAwGA1UdEwEB/wQCMAAwDgYDVR0PAQH/BAQDAgUgMB8GA1Ud |jPHCyqaqfrAgMBAAGjYDBeMAwGA1UdEwEB/wQCMAAwDgYDVR0PAQH/BAQDAgUgMB8GA1Ud
|IwQYMBaAFOngkCeseCB6mtNM8kI3TiKunji7MB0GA1UdDgQWBBTo9Lhn2LOWpCrzEaop05 |IwQYMBaAFOngkCeseCB6mtNM8kI3TiKunji7MB0GA1UdDgQWBBTo9Lhn2LOWpCrzEaop05
|Vahha0JDAJBgUrDgMCHQUAA4GBAJj6r30hAaqziLzx7xJfTVgw2I5OvOEssn5oV40MQ1zX |Vahha0JDAJBgUrDgMCHQUAA4GBAAkhajtiUN9iQV4SQAkUw7XkKC5Qd/pWZrOilrYKAa6m
|HkXR95Uz4qB1yhPIU7wzJpuzyFDfzYRqG+hIyELQgWNsMxm+Amn2FjF/1JnfgHrzO/gbKX |OOW9a+fyPm2wpe/Mh6yrJaS72uIagbe5FbNs2tET1Z8P1Ut6jVTYWtwHAdEFQQ0KYUeA8X
|0mUTcDIj/2FT0w8zKK8a6X3tf1FqmnrccVr1M+qCWRssRfTmoVV0dQvLL6 |UP+CIbUJIz/ggFUG17AwAD8S1L/iBixyB3BUIj26jHrd5xG9EqmYKmZet+
|<BobRSASignByCarl.cer |<BobRSASignByCarl.cer
|* CarlDSSSelf.cer |* CarlDSSSelf.cer
|* Creator: [JS] |* Creator: [JS]
|>CarlDSSSelf.cer |>CarlDSSSelf.cer
|MIICmzCCAlqgAwIBAgIBATAJBgcqhkjOOAQDMBIxEDAOBgNVBAMTB0NhcmxEU1MwHhcNOT |MIICmzCCAlqgAwIBAgIBATAJBgcqhkjOOAQDMBIxEDAOBgNVBAMTB0NhcmxEU1MwHhcNOT
|kwODE2MjI1MDUwWhcNMzkxMjMxMjM1OTU5WjASMRAwDgYDVQQDEwdDYXJsRFNTMIIBtzCC |kwODE2MjI1MDUwWhcNMzkxMjMxMjM1OTU5WjASMRAwDgYDVQQDEwdDYXJsRFNTMIIBtzCC
|ASsGByqGSM44BAEwggEeAoGBALZJGD6KRMEpcZRMAcQSwXp5y1RNqx6B+8ZMsw6UCQbrAd |ASsGByqGSM44BAEwggEeAoGBALZJGD6KRMEpcZRMAcQSwXp5y1RNqx6B+8ZMsw6UCQbrAd
|SxyHFLx0XAUCVdnPza5G3T4oZIhIJ9uhWVShb2Ru3d9pjSu36KCoq6Fnu5UAFIk4vrJRVR |SxyHFLx0XAUCVdnPza5G3T4oZIhIJ9uhWVShb2Ru3d9pjSu36KCoq6Fnu5UAFIk4vrJRVR
|l1Xcj1MOEKlQ/HC3zTBU/dreqKoitaGvi8wCiOeLcF+5reEI1G0pLdbpAhUA3cEv31POCz |l1Xcj1MOEKlQ/HC3zTBU/dreqKoitaGvi8wCiOeLcF+5reEI1G0pLdbpAhUA3cEv31POCz
skipping to change at line 9055 skipping to change at line 9119
|mdtIqJ5HpZ4GvrT0oIYBEMRQ+7H1MYgSexUYcPhyCGVPUaejlhjoebSmbPG3emEm9q9NNE |mdtIqJ5HpZ4GvrT0oIYBEMRQ+7H1MYgSexUYcPhyCGVPUaejlhjoebSmbPG3emEm9q9NNE
|Ii3YDzx0LOahyMpiTpVGqgZ7GA3ruwxP68RUzS7DV0oUIEQKl0xOmqedPOXHSk7aXbZfXA |Ii3YDzx0LOahyMpiTpVGqgZ7GA3ruwxP68RUzS7DV0oUIEQKl0xOmqedPOXHSk7aXbZfXA
|N9aB8QqTXySh25eW7oeLedvpBxEjznAkhDByAoPVfWDT1PanTUzC4In6zVkgopMwHgYLKo |N9aB8QqTXySh25eW7oeLedvpBxEjznAkhDByAoPVfWDT1PanTUzC4In6zVkgopMwHgYLKo
|ZIhvcNAQkQAwUwDwYLKoZIhvcNAQkQAwYFADBGMEQwGDASMRAwDgYDVQQDEwdDYXJsRFNT |ZIhvcNAQkQAwUwDwYLKoZIhvcNAQkQAwYFADBGMEQwGDASMRAwDgYDVQQDEwdDYXJsRFNT
|AgIAyQQol6Icmx1yA0z6H87aroVJ4Q0yBJeAQ8sASWA2p91LDuXWqHu6ZpSXpzBDBgkqhk |AgIAyQQol6Icmx1yA0z6H87aroVJ4Q0yBJeAQ8sASWA2p91LDuXWqHu6ZpSXpzBDBgkqhk
|iG9w0BBwEwFAYIKoZIhvcNAwcECDfnftcWF8isgCBq8riaWGWyrfQ6oDGyvfdSeusr+wR3 |iG9w0BBwEwFAYIKoZIhvcNAwcECDfnftcWF8isgCBq8riaWGWyrfQ6oDGyvfdSeusr+wR3
|D+JZxjO7Bf0M6g== |D+JZxjO7Bf0M6g==
|<6.1.bin |<6.1.bin
|* Example from section 6.2 |* Example from section 6.2
|* Creator: [JP] |* Creator: [JS]
|>6.2.bin |>6.2.bin
|MIIBHgYJKoZIhvcNAQcDoIIBDzCCAQsCAQAxgcAwgb0CAQAwJjASMRAwDgYDVQQDEwdDYX |MIAGCSqGSIb3DQEHA6CAMIACAQAxgcAwgb0CAQAwJjASMRAwDgYDVQQDEwdDYXJsUlNBAh
|JsUlNBAhBGNGvHgABWvBHTbi7NXXHQMA0GCSqGSIb3DQEBAQUABIGAWVbrrp0wNgdTKuDx |BGNGvHgABWvBHTbi7NXXHQMA0GCSqGSIb3DQEBAQUABIGAXN5tddBe5mh2EUcbW4kuVa1z
|8i4gk9yu7eQzhfIarAWGIKldyMvwrD/9ZnH3Qv8sMFK8bbLW6Uq00Y29l1N5DaN5X65rel |BaooAvgC2k3+9DUgDmto69YrrohYOtOsA3swXohEO/8z3N28vZHDnfVzbjPknyxCoI4ldC
|GRj9Q9rFJmfsmLUDA7b7WrbR7EGerQdyX3igKs9LfAbXQbKI7yYGHiejvDpLxOyIibeC5m |kmUHFwL1EIri1ewaUWBjNPqSMKM+WWO9D4g74KKQEKz1MTkhim97E8gnhZZ8hl5CYOUjcA
|ft9cgqbUSej0T0gwQwYJKoZIhvcNAQcBMBQGCCqGSIb3DQMHBAhqRXOe7X0RN4Ag/Hc8dn |UOo5I+cwgAYJKoZIhvcNAQcBMBQGCCqGSIb3DQMHBAjh0evgJspYSaCABCACOgoLvrcxHd
|Mk9WOHdd17XMQQncrbBEeTlCeitIzg14OaHkg= |TD68qRGK2Jey34sfv9vypSgXfan0l/AAAAAAAAAAAAAAA=
|<6.2.bin |<6.2.bin
|* Example from section 6.3 |* Example from section 6.3
|* Creator: [JP] |* Creator: [JS]
|>6.3.bin |>6.3.bin
|MIIBIwYJKoZIhvcNAQcDoIIBFDCCARACAQAxgcAwgb0CAQAwJjASMRAwDgYDVQQDEwdDYX |MIIBJAYJKoZIhvcNAQcDoIIBFTCCARECAQAxgcAwgb0CAQAwJjASMRAwDgYDVQQDEwdDYX
|JsUlNBAhBGNGvHgABWvBHTbi7NXXHQMA0GCSqGSIb3DQEBAQUABIGAalsgwzOOR6T9/OoJ |JsUlNBAhBGNGvHgABWvBHTbi7NXXHQMA0GCSqGSIb3DQEBAQUABIGAXv3R/XHjtD63WYas
|BiVDussuH00jIfAhblm8JXHQChyyBnfacZrPNnPVpfuC6qfm1rZDWKNcNJhY+qH5DwjvxY |cGyE13/2+U54a+awtR7V+0N2pyJpZ8nicIlz5GnzWUN3SQSzAMn37kEy5kxax0Cvh+znMg
|du9fekebPDj7KpTd/RYPPhbW1A2euzTSGCfquHs4Z0/dC80rprdDaj9wV7BOT2AQ6C1TC1 |0eiXqX0/VqdagMTVm3kpviSmQuc2dM5i/6nj+0ETznOkwjFk/pJ+7Z5R9mV/xD6Tgc713J
|dOUy1pN25ecdpUYwSAYJKoZIhvcNAQcBMBkGCCqGSIb3DQMCMA0CAToECALOInw6r/8BgC |jpdGLGsZcxgYWOowSQYJKoZIhvcNAQcBMBoGCCqGSIb3DQMCMA4CAgCgBAicBNIZLipVoY
|CUWbv5jV5x/Qx6CNKvbAvHzVTsHAfeC3QRRja9YsSHSA== |AgAIOpJxXq1dxqqOdN6Prq96jWPUxSYsuJ6Dnh8Xflq/c=
|<6.3.bin |<6.3.bin
|* Example from section 6.4 |* Example from section 6.4
|* Creator: [JP] |* Creator: [JP]
|>6.4.bin |>6.4.bin
|MIIC9wYJKoZIhvcNAQcDoIIC6DCCAuQCAQIxggKYoYIBSAIBA6CBlqGBkzAJBgcqhkjOPg |MIIC9wYJKoZIhvcNAQcDoIIC6DCCAuQCAQIxggKYoYIBSAIBA6CBlqGBkzAJBgcqhkjOPg
|IBA4GFAAKBgQCdbqpNVTUFZmX3oGR1mWf7Tk9TVTR6hSGVK35iPN4KySAcTIBHPqZf9UsH |IBA4GFAAKBgQCdbqpNVTUFZmX3oGR1mWf7Tk9TVTR6hSGVK35iPN4KySAcTIBHPqZf9UsH
|EiZ0vti4LizqRSEFyH36aG4jRocP0tCoiw7eTX0s81F2n1j38nsjMNchU5ApmlteZBwN/3 |EiZ0vti4LizqRSEFyH36aG4jRocP0tCoiw7eTX0s81F2n1j38nsjMNchU5ApmlteZBwN/3
|7rnTXftdOj/zAiuK8xCcKOv8i9UfInpc00EbVMK79oGKFCBECDFBrYRijveD/IHik7FPj+ |7rnTXftdOj/zAiuK8xCcKOv8i9UfInpc00EbVMK79oGKFCBECDFBrYRijveD/IHik7FPj+
|FjYubzXIKWCKxmq/SOZ222p8GDYTRyDiXzkIwgSX8/zmw291Tskwl7FBa6HoUNbHMB4GCy |FjYubzXIKWCKxmq/SOZ222p8GDYTRyDiXzkIwgSX8/zmw291Tskwl7FBa6HoUNbHMB4GCy
skipping to change at line 9134 skipping to change at line 9198
|VZd1JEQVlNQkl4RURBTw0KQmdOVkJBTVRCME5oY214RVUxTUNBZ0RKQkNoVEV2L0lpWWI1 |VZd1JEQVlNQkl4RURBTw0KQmdOVkJBTVRCME5oY214RVUxTUNBZ0RKQkNoVEV2L0lpWWI1
|OGZKcEJjMU1RQUoxRlNHMzNMZEZicFJxOFFpck1VMTJKaUhkOXFBSg0Kamo5Q29sTUNBUV |OGZKcEJjMU1RQUoxRlNHMzNMZEZicFJxOFFpck1VMTJKaUhkOXFBSg0Kamo5Q29sTUNBUV
|F3RXdRUlRXRnBiRXhwYzNSVWNtbHdiR1ZFUlZNd0R3WUxLb1pJaHZjTkFRa1FBd1lGQUFR |F3RXdRUlRXRnBiRXhwYzNSVWNtbHdiR1ZFUlZNd0R3WUxLb1pJaHZjTkFRa1FBd1lGQUFR
|by9KVjI1cWlwc2xidQ0KdWJaRExzbEVCOTNZNHJHdE9KSHB5bU51K3U1RmU3YnB5cFZ0an |by9KVjI1cWlwc2xidQ0KdWJaRExzbEVCOTNZNHJHdE9KSHB5bU51K3U1RmU3YnB5cFZ0an
|c0VldqQ0FCZ2txaGtpRzl3MEJCd0V3R1FZSUtvWklodmNOQXdJdw0KRFFJQk9nUUlqM2hQ |c0VldqQ0FCZ2txaGtpRzl3MEJCd0V3R1FZSUtvWklodmNOQXdJdw0KRFFJQk9nUUlqM2hQ
|OUZnMnlFcWdnQVFnNGxZTE9nbjBOdU9yU0FMTHZ0TjROemVWdFlKMDdoc1cyT1o3RnFRTm |OUZnMnlFcWdnQVFnNGxZTE9nbjBOdU9yU0FMTHZ0TjROemVWdFlKMDdoc1cyT1o3RnFRTm
|11b0FBQUFBQUFBQQ0KQUFBQQ0K |11b0FBQUFBQUFBQQ0KQUFBQQ0K
|<6.6.eml |<6.6.eml
|* Example from section 6.7 |* Example from section 6.7
|* Creator: [JP] |* Creator: [JS]
|>6.7.bin |>6.7.bin
|MIHHBgkqhkiG9w0BBwOggbkwgbYCAQIxZ6JlAgEEMCQEEU1haWxMaXN0VHJpcGxlREVTGA |MIIBZQYJKoZIhvcNAQcDoIIBVjCCAVICAQIxggEAMIG9AgEAMCYwEjEQMA4GA1UEAxMHQ2
|8xOTk1MTIzMDIzNTk1OVowEAYLKoZIhvcNAQkQAwcCAToEKKCe3rlaGf02bYgB+9ZqG/81 |FybFJTQQIQRjRrx4AAVrwR024uzV1x0DANBgkqhkiG9w0BAQEFAASBgJQmQojGi7Z4IP+C
|vZ+++a0bJUWrkmn4epNH1eVXmD+57FkwSAYJKoZIhvcNAQcBMBkGCCqGSIb3DQMCMA0CAT |VypBmNFoCDoEp87khtgyff2N4SmqD3RxPx+8hbLQt9i3YcMwcap+aiOkyqjMalT03VUC0X
|oECPzyc4/hI0yYgCD9Xk3qdHF3J4WIA/WGh3WQMg4qgSH5iUvGlBF3LpEjCA== |BOGv+HYI3HBZm/aFzxoq+YOXAWs5xlGerZwTOc9j6AYlK4qXvnztR5SQ8TBjlzytm4V7zg
|+TGrnGVNQBNw47Ewoj4CAQQwDQQLTWFpbExpc3RSQzIwEAYLKoZIhvcNAQkQAwcCAToEGH
|cUr5MSJ/g9HnJVHsQ6X56VcwYb+OfojTBJBgkqhkiG9w0BBwEwGgYIKoZIhvcNAwIwDgIC
|AKAECJwE0hkuKlWhgCBeKNXhojuej3org9Lt7n+wWxOhnky5V50vSpoYRfRRyw==
|<6.7.bin |<6.7.bin
|* Example from section 6.8 |* Example from section 6.8
|* Creator: [JP] |* Creator: [JP]
|>6.8.eml |>6.8.eml
|VG86IFVzZXIyDUZyb206IFVzZXIxLA1TdWJqZWN0OiBFeGFtcGxlIDYuOA1EYXRlOiBUdW |VG86IFVzZXIyDUZyb206IFVzZXIxLA1TdWJqZWN0OiBFeGFtcGxlIDYuOA1EYXRlOiBUdW
|UsIDE5IEp1biAyMDAxIDE4OjEyOjU2IC0wMzYwIChDZW50cmFsIFN0YW5kYXJkIFRpbWUp |UsIDE5IEp1biAyMDAxIDE4OjEyOjU2IC0wMzYwIChDZW50cmFsIFN0YW5kYXJkIFRpbWUp
|DUNvbnRlbnQtVHlwZTogQXBwbGljYXRpb24vcGtjczctbWltZTtuYW1lPSJzbWltZS5wN2 |DUNvbnRlbnQtVHlwZTogQXBwbGljYXRpb24vcGtjczctbWltZTtuYW1lPSJzbWltZS5wN2
|0iO2ZpbGVuYW1lPSJzbWltZS5wN20iDUNvbnRlbnQtVHJhbnNmZXItRW5jb2Rpbmc6IGJh |0iO2ZpbGVuYW1lPSJzbWltZS5wN20iDUNvbnRlbnQtVHJhbnNmZXItRW5jb2Rpbmc6IGJh
|c2U2NA1Db250ZW50LURpc3Bvc2l0aW9uOiBhdHRhY2htZW50O2ZpbGVuYW1lPSJzbWltZS |c2U2NA1Db250ZW50LURpc3Bvc2l0aW9uOiBhdHRhY2htZW50O2ZpbGVuYW1lPSJzbWltZS
skipping to change at line 9212 skipping to change at line 9279
|>6.11.bin |>6.11.bin
|MIHBBgkqhkiG9w0BBwOggbMwgbACAQIxZqJkAgEEMCQEEU1haWxMaXN0VHJpcGxlREVTGA |MIHBBgkqhkiG9w0BBwOggbMwgbACAQIxZqJkAgEEMCQEEU1haWxMaXN0VHJpcGxlREVTGA
|8xOTk1MTIzMDIzNTk1OVowDwYLKoZIhvcNAQkQAwYFAAQodDHARVFMPC0u2mNQi67UrGTM |8xOTk1MTIzMDIzNTk1OVowDwYLKoZIhvcNAQkQAwYFAAQodDHARVFMPC0u2mNQi67UrGTM
|la6vzQ+MtkgfC0USTfukq8eDMEtprTBDBgkqhkiG9w0BBwEwFAYIKoZIhvcNAwcECEEecO |la6vzQ+MtkgfC0USTfukq8eDMEtprTBDBgkqhkiG9w0BBwEwFAYIKoZIhvcNAwcECEEecO
|x9VoDZgCDATH5uMelgREm54z4kptRYTV5lB2mlaak4831QyQmzwA== |x9VoDZgCDATH5uMelgREm54z4kptRYTV5lB2mlaak4831QyQmzwA==
|<6.11.bin |<6.11.bin
|* Example from section 7.0 |* Example from section 7.0
|* Creator: [JS] |* Creator: [JS]
|>7.0.bin |>7.0.bin
|MFoGCSqGSIb3DQEHBaBNMEsCAQAwBwYFKw4DAhowJwYJKoZIhvcNAQcBoBoEGFRoaXMgc2 |MF4GCSqGSIb3DQEHBaBRME8CAQAwBwYFKw4DAhowKwYJKoZIhvcNAQcBoB4EHFRoaXMgaX
|9tZSBzYW1wZSBjb250ZW50LgQUQGrsCFJ5um4WAi2eBinAIpaH3Ug= |Mgc29tZSBzYW1wbGUgY29udGVudC4EFEBq7AhSebpuFgItngYpwCKWh91I
|<7.0.bin |<7.0.bin
|* Example from section 8.1 |* Example from section 8.1
|* Creator: [JS] |* Creator: [JS]
|>8.1.bin |>8.1.bin
|MFcGCSqGSIb3DQEHBqBKMEgCAQAwQwYJKoZIhvcNAQcBMBQGCCqGSIb3DQMHBAiza2v7Yj |MFcGCSqGSIb3DQEHBqBKMEgCAQAwQwYJKoZIhvcNAQcBMBQGCCqGSIb3DQMHBAiza2v7Yj
|EIToAg12/RF4+9AvhCMfXB0qL3SkFZSClk9nUkglQiPa+a+OQ= |EIToAg12/RF4+9AvhCMfXB0qL3SkFZSClk9nUkglQiPa+a+OQ=
|<8.1.bin |<8.1.bin
|* Example from section 8.2 |* Example from section 8.2
skipping to change at line 9315 skipping to change at line 9382
|iG9w0BBwEwIwYJKoZIhvcNAQkEMRYEFEBq7AhSebpuFgItngYpwCKWh91IMG0GCyqGSIb3 |iG9w0BBwEwIwYJKoZIhvcNAQkEMRYEFEBq7AhSebpuFgItngYpwCKWh91IMG0GCyqGSIb3
|DQEJEAICMV4xXAIBAQYHKgMEBQYHCDExMC+ACCoDBAUGB4Z4oSMTIVRISVMgSVMgQSBURV |DQEJEAICMV4xXAIBAQYHKgMEBQYHCDExMC+ACCoDBAUGB4Z4oSMTIVRISVMgSVMgQSBURV
|NUIFNFQ1VSSVRZLUNBVEVHT1JZLhMbVEhJUyBJUyBBIFBSSVZBQ1kgTUFSSyBURVNUMAkG |NUIFNFQ1VSSVRZLUNBVEVHT1JZLhMbVEhJUyBJUyBBIFBSSVZBQ1kgTUFSSyBURVNUMAkG
|ByqGSM44BAMELzAtAhQoFXy/YrEeCZe8SYGQz4pGfpT1XQIVAIgGwk7fTf1gScEhKQwETQ |ByqGSM44BAMELzAtAhQoFXy/YrEeCZe8SYGQz4pGfpT1XQIVAIgGwk7fTf1gScEhKQwETQ
|i321qS |i321qS
|<11.3.bin |<11.3.bin
|* Example from section 11.4 |* Example from section 11.4
|* Creator: [JP] |* Creator: [JP]
|>11.4.bin |>11.4.bin
|* Creator: [JP]
|>11.4.bin
|MIIFPAYJKoZIhvcNAQcCoIIFLTCCBSkCAQExCTAHBgUrDgMCGjArBgkqhkiG9w0BBwGgHg |MIIFPAYJKoZIhvcNAQcCoIIFLTCCBSkCAQExCTAHBgUrDgMCGjArBgkqhkiG9w0BBwGgHg
|QcVGhpcyBpcyBzb21lIHNhbXBsZSBjb250ZW50LqCCAuIwggLeMIICnaADAgECAgIAyDAJ |QcVGhpcyBpcyBzb21lIHNhbXBsZSBjb250ZW50LqCCAuIwggLeMIICnaADAgECAgIAyDAJ
|BgcqhkjOOAQDMBIxEDAOBgNVBAMTB0NhcmxEU1MwHhcNOTkwODE3MDExMDQ5WhcNMzkxMj |BgcqhkjOOAQDMBIxEDAOBgNVBAMTB0NhcmxEU1MwHhcNOTkwODE3MDExMDQ5WhcNMzkxMj
|MxMjM1OTU5WjATMREwDwYDVQQDEwhBbGljZURTUzCCAbYwggErBgcqhkjOOAQBMIIBHgKB |MxMjM1OTU5WjATMREwDwYDVQQDEwhBbGljZURTUzCCAbYwggErBgcqhkjOOAQBMIIBHgKB
|gQCBjc3tg+oKnjk+wkgoo+RHk90O16gO7FPFq4QIT/+U4XNIfgzW80RI0f6fr6ShiS/h2T |gQCBjc3tg+oKnjk+wkgoo+RHk90O16gO7FPFq4QIT/+U4XNIfgzW80RI0f6fr6ShiS/h2T
|DINt4/m7+3TNxfaYrkddA3DJEIlZvep175/PSfL91DqItU8T+wBwhHTV2Iw8O1s+NVCHXV |DINt4/m7+3TNxfaYrkddA3DJEIlZvep175/PSfL91DqItU8T+wBwhHTV2Iw8O1s+NVCHXV
|OXYQxHi9/52whJc38uRRG7XkCZZc835b2wIVAOJHphpFZrgTxtqPuDchK2KL95PNAoGAJj |OXYQxHi9/52whJc38uRRG7XkCZZc835b2wIVAOJHphpFZrgTxtqPuDchK2KL95PNAoGAJj
|jQFIkyqjn7Pm3ZS1lqTHYjOQQCNVzyyxowwx5QXd2bWeLNqgU9WMB7oja4bgevfYpCJaf0 |jQFIkyqjn7Pm3ZS1lqTHYjOQQCNVzyyxowwx5QXd2bWeLNqgU9WMB7oja4bgevfYpCJaf0
|dc9KCF5LPpD4beqcySGKO3YU6c4uXaMHzSOFuC8wAXxtSYkRiTZEvfjIlUpTVrXi+XPsGm |dc9KCF5LPpD4beqcySGKO3YU6c4uXaMHzSOFuC8wAXxtSYkRiTZEvfjIlUpTVrXi+XPsGm
|E2HxF/wr3t0VD/mHTC0YFKYDm6NjkDgYQAAoGAXOO5WnUUlgupet3jP6nsrF7cvbcTETSm |E2HxF/wr3t0VD/mHTC0YFKYDm6NjkDgYQAAoGAXOO5WnUUlgupet3jP6nsrF7cvbcTETSm
skipping to change at line 9403 skipping to change at line 9468
Blake Ramsdell [BR] Blake Ramsdell [BR]
Jim Schaad [JS] Jim Schaad [JS]
John Pawling [JP] John Pawling [JP]
Paul Hoffman [PH] Paul Hoffman [PH]
The examples are displayed with a modified version of Peter Gutmann's The examples are displayed with a modified version of Peter Gutmann's
"dumpasn1" program. Peter and Jim Schaad and Blake Ramsdell have been "dumpasn1" program. Peter and Jim Schaad and Blake Ramsdell have been
updating the program based on input from the process of writing this updating the program based on input from the process of writing this
draft. draft.
E. Differences between -06 and -07 E. Differences between -07 and -08
Replaced the following examples: Many places: Replaced BobPrivRSAEncrypt.pri, BobRSASignByCarl.cer, 6.2,
BobRSASignByCarl.cer 6.3, 6.7, and 7 with new files.
5.1.bin
5.10.bin
5.3.bin
5.4.bin
5.6.bin
5.7.bin
5.8.eml
5.9.eml
6.3.bin
6.4.bin
6.5.bin
6.7.bin
6.8.eml
6.9.bin
6.10.bin
8.2.bin
11.1.bin
11.2.signedReceipt.bin
11.3.bin
11.4.bin
11.5.bin
11.6.bin
6.2: Removed "and has unprotected attributes" from the description Intro: Added the reference to RFC 3029.
because they were removed from the example.
6.9: Added "and has unprotected attributes" to the description because Changed "DH-DSS" to "DSS" in 5.1, 5.3, 5.4, 5.6, and 5.7.
the example has them.
5.6: "Two SignedDatas" changed to "Two signerInfos".
5.11: Added "Alices's and Carl's" to the description.
Removed the "x-" from the application/pkcs7-stuff in examples 5.8 and
6.6 and 6.8. Also removed the "X-MimeOLE" from example 6.6.
9: Got rid of the actual examples and put in text saying that they
don't exist.
Fixed a formatting problem in the binary version of 11.4 in Appendix
C.
F. Editor's Address F. Editor's Address
Paul Hoffman Paul Hoffman
Internet Mail Consortium Internet Mail Consortium
127 Segre Place 127 Segre Place
Santa Cruz, CA 95060 USA Santa Cruz, CA 95060 USA
phoffman@imc.org phoffman@imc.org
 End of changes. 

This html diff was produced by rfcdiff 1.23, available from http://www.levkowetz.com/ietf/tools/rfcdiff/