There is another way: use X509_STORE_CTX_set_time() function :) Aleksey Rich Salz wrote: >If you can modify openssl, look for CERT_EXPIRED in a file verify.c >Should be easy what to comment out. > > > >_______________________________________________ >xmlsec mailing list >xmlsec@aleksey.com >http://www.aleksey.com/mailman/listinfo/xmlsec > >