$Id$

nist tests
	name constrains
	policy mappings

OCSP verfier
	check that signer is allowed to sign OCSP

CRL verfier
	check that signer is allowed to sign CRL

DSA support
DSA2 support
SHA2 support

x509 policy mappings support

path validation

tests
	cms
	ocsp
	crl
	negative tests
		all checksums
		conditions/branches



pkcs#7
	handle pkcs7 support ?