CMP for OpenSSL

Currently out of order! Sorry for the inconvenience!

This CMP capable CA allows convenient public evaluation. It listens at http://izac.de:4711 for certificate requests.

The needed CA certificate is already included in the 'certs' folder of the downloadable source package.

If you are using an HTTP proxy not able to keep persisting connections, completing the IR and KUR sequences is not possible with this server so far.

Only four simple steps are needed to evaluate the CMP for OpenSSL client:

1. Get and build the package available through SVN. Please make sure you're using at least revision 21!
2. Enter some random data into the form below to create a PKI user and obtain the reference/secret pair.
3. Execute the 'scripting/do_ossl_ir_izac.sh' script with reference# and password as arguments to obtain a certificate.
4. Execute the 'scripting/do_ossl_kur_izac.sh' script to update the certificate obtained before.

Wireshark dissects CMPv2 messages since version 0.99.7, using a recent SVN snapshot is recommended.