2.2.9.5.2 ISSUER

The ISSUER element of the RAC identifies the issuer of the certificate. The contents of the ISSUER element MUST be copied verbatim from the contents of the principal element in the ISSUEDPRINCIPALS element of the issuing server's SLC.

The ISSUER element MUST use the following template.

 <ISSUER>
    <OBJECT type="MS-DRM-Server">
       <ID type="MS-GUID">
          [[- GUID -]]
       </ID>
       [[- name -]]
       [[- address -]]
    </OBJECT>
    [[- publickey -]]
    [[- serverversion -]]
    [[- serversku -]]
 </ISSUER>

[[- GUID -]]: MUST be a unique GUID that identifies the issuer of the certificate, represented as a literal ASCII string enclosed in braces. MUST be taken from the object of the principal of the ISSUEDPRINCIPALS of the issuer's certificate.

[[- name -]]: In RMS 2.0, this element SHOULD be a string that describes the server's name. This element is not present in RMS 1.0.

[[- address -]]: SHOULD be an ADDRESS element of type "URL" containing the URL of the server.

[[- publickey -]]: MUST contain the issuer's public key. The exponent MUST be set to 65537. The size attribute of the VALUE element MUST be set to the size of the issuer's public key. The modulus MUST contain the modulus of the issuer's public key.

[[- serverversion -]]: SHOULD be a SECURITYLEVEL element. The name attribute SHOULD be set to "Server-Version" and the value attribute MAY<14> be set to a string containing additional version information of the server.

[[- serversku -]]: SHOULD be a SECURITYLEVEL element. The name attribute SHOULD be set to "Server-SKU" and the value attribute MAY<15> be set to a string containing additional version information of the server.