<html xmlns:v="urn:schemas-microsoft-com:vml" xmlns:o="urn:schemas-microsoft-com:office:office" xmlns:w="urn:schemas-microsoft-com:office:word" xmlns:m="http://schemas.microsoft.com/office/2004/12/omml" xmlns="http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<meta name="Generator" content="Microsoft Word 15 (filtered medium)">
<!--[if !mso]><style>v\:* {behavior:url(#default#VML);}
o\:* {behavior:url(#default#VML);}
w\:* {behavior:url(#default#VML);}
.shape {behavior:url(#default#VML);}
</style><![endif]--><style><!--
/* Font Definitions */
@font-face
{font-family:"Cambria Math";
panose-1:2 4 5 3 5 4 6 3 2 4;}
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman",serif;}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
p.MsoListParagraph, li.MsoListParagraph, div.MsoListParagraph
{mso-style-priority:34;
margin-top:0in;
margin-right:0in;
margin-bottom:0in;
margin-left:.5in;
margin-bottom:.0001pt;
font-size:12.0pt;
font-family:"Times New Roman",serif;}
span.m-155593644471316204f0xo1gc-mb-y2
{mso-style-name:m_-155593644471316204f0xo1gc-mb-y2;}
p.m-155593644471316204line874, li.m-155593644471316204line874, div.m-155593644471316204line874
{mso-style-name:m_-155593644471316204line874;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman",serif;}
p.m-155593644471316204line862, li.m-155593644471316204line862, div.m-155593644471316204line862
{mso-style-name:m_-155593644471316204line862;
mso-margin-top-alt:auto;
margin-right:0in;
mso-margin-bottom-alt:auto;
margin-left:0in;
font-size:12.0pt;
font-family:"Times New Roman",serif;}
span.EmailStyle20
{mso-style-type:personal-reply;
font-family:"Calibri",sans-serif;
color:#1F497D;}
.MsoChpDefault
{mso-style-type:export-only;
font-family:"Calibri",sans-serif;}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
/* List Definitions */
@list l0
{mso-list-id:1255165366;
mso-list-type:hybrid;
mso-list-template-ids:166519236 67698705 67698713 67698715 67698703 67698713 67698715 67698703 67698713 67698715;}
@list l0:level1
{mso-level-text:"%1\)";
mso-level-tab-stop:none;
mso-level-number-position:left;
margin-left:23.5pt;
text-indent:-.25in;}
@list l0:level2
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
margin-left:59.5pt;
text-indent:-.25in;}
@list l0:level3
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
margin-left:95.5pt;
text-indent:-9.0pt;}
@list l0:level4
{mso-level-tab-stop:none;
mso-level-number-position:left;
margin-left:131.5pt;
text-indent:-.25in;}
@list l0:level5
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
margin-left:167.5pt;
text-indent:-.25in;}
@list l0:level6
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
margin-left:203.5pt;
text-indent:-9.0pt;}
@list l0:level7
{mso-level-tab-stop:none;
mso-level-number-position:left;
margin-left:239.5pt;
text-indent:-.25in;}
@list l0:level8
{mso-level-number-format:alpha-lower;
mso-level-tab-stop:none;
mso-level-number-position:left;
margin-left:275.5pt;
text-indent:-.25in;}
@list l0:level9
{mso-level-number-format:roman-lower;
mso-level-tab-stop:none;
mso-level-number-position:right;
margin-left:311.5pt;
text-indent:-9.0pt;}
ol
{margin-bottom:0in;}
ul
{margin-bottom:0in;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
</head>
<body lang="EN-US" link="blue" vlink="purple">
<div class="WordSection1">
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1F497D">Hi Kirk and Ryan,<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1F497D">I think this points out a couple of important changes we should make to the BRs:<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1F497D">1) We should clarify which fields can’t have just meta data characters. The statement is currently ambiguous in 2 ways:
<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1F497D">1.1) It’s listed under “Other Subject Attributes” which implies it’s OK in any other field (which we know is not accurate). This applies especially to the OU
field that is listed above and then seems to be precluded from this requirement.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1F497D">1.2) It’s not just optional fields, it should be ANY field in the subject DN. Although, all required fields should have clear requirements on what they MUST contain,
it would not hurt to apply this meta data requirement to all Subject information fields.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1F497D">2) The list of meta data characters is not spelled out clearly. We say parenthetically meta data characters such as ‘.’, ‘‐‘, and ‘ ‘ (i.e. space). I think
there are 2 categories of content we need to specifically disallow:<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1F497D">2.1) Fields that consist of only meta data characters are clearly not allowed. I think this is the list: ASCII 32 - 47, 58 - 64, 91 - 96, 123 – 126. This
is easy to specify and then audit against.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1F497D">2.1) The harder one is to say don’t put nonsense into any fields like N/A, NA, test, “not applicable” etc. The descriptions of all the fields in BR section 7.1.4.2.2
items a-h are clear on the content. Item i) OU and j) Other subject attributes, might need to more clearly specify what is permitted and what is prohibited.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1F497D">The Validation WG should probably take this up.<o:p></o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1F497D"><o:p> </o:p></span></p>
<p class="MsoNormal"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1F497D">Doug<o:p></o:p></span></p>
<p class="MsoNormal"><a name="_MailEndCompose"><span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:#1F497D"><o:p> </o:p></span></a></p>
<div>
<div style="border:none;border-top:solid #E1E1E1 1.0pt;padding:3.0pt 0in 0in 0in">
<p class="MsoNormal"><b><span style="font-size:11.0pt;font-family:"Calibri",sans-serif">From:</span></b><span style="font-size:11.0pt;font-family:"Calibri",sans-serif"> Public [mailto:public-bounces@cabforum.org]
<b>On Behalf Of </b>Ryan Sleevi via Public<br>
<b>Sent:</b> Friday, August 18, 2017 9:49 AM<br>
<b>To:</b> Kirk Hall <Kirk.Hall@entrustdatacard.com>; CA/Browser Forum Public Discussion List <public@cabforum.org><br>
<b>Subject:</b> Re: [cabfpub] Question on BR BR 7.1.4.2.2(j) - Other Subject Attributes<o:p></o:p></span></p>
</div>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
<div>
<p class="MsoNormal">Hi Kirk,<o:p></o:p></p>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<div>
<p class="MsoNormal">Your email may be confusing somethings. This is related to Entrust's issuance of non-BR compliant certificates, <a href="https://bugzilla.mozilla.org/show_bug.cgi?id=1390996">https://bugzilla.mozilla.org/show_bug.cgi?id=1390996</a> , correct?
Hopefully you'll have a chance to reply there, even if to only acknowledge receipt and that Entrust is investigating.<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<div>
<p class="MsoNormal">The short answer is this language came from the Forum, because it makes sense. As CAs have liked to suggest that the additional subject information afforded by an EV and OV certificate is meaningful, and as both the Baseline Requirements
and the EV Guidelines exist to create a common profile of fields, this language prohibits a practice that was previously common, of CAs explicitly including certain attributes in fields and putting the contents such as "n/a" or "-"<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<div>
<p class="MsoNormal">This is undesirable for many reasons, which the Forum recognized when prohibiting.<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal">1) One goal of our requirements is to ensure certificates from different CAs follow a consistent profile and representation. One CA's "n/a" could be encoded as another CA's "-", and one CAs "NA" could mean "not applicable" could mean another
CA's "North America". The current requirement helps ensure consistency.<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal">2) For optional fields, there's a defined way in X.509 (and, by proxy, RFC 5280) to how to represent that an optional field was not applicable or not verified - and that's simply to not include it. There is no technical requirement that
a CA include a subject Attribute Type with an empty or symbolic Attribute Value; if it's not applicable, the correct approach, in all the relevant standards, is to simply omit this field.<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal">3) Omitting this field, rather than filling it with 'junk' data (such as '-', ' ', or other indicators of no applicability) helps keep certificates smaller, and by doing so, ensures TLS remains accessible for a broad spectrum of users and
site operators.<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal">4) In particular for browsers, the contents of Subject fields are displayed. Even in cases where a localized name for the associated Attribute Type is not included in the UI (e.g. Li-Chun's remarks about the EV OIDs in the context of Firefox
and, previously, Chrome), the Attribute Value, by being an appropriate universal ASN.1 type, can and is displayed. That is, in the UI, you might see something like "<a href="http://1.2.3.4">1.2.3.4</a>: N/A" in the UI for an attribute type of OID 1.2.3.4 and
an attribute value of IA5String. In order to ensure that UI behaviour is consistent, and that CAs do not introduce additional information that confuses or misleads relying parties, such prohibitions are useful.<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<div>
<p class="MsoNormal">As such, (j) serves a very important purpose, and while I appreciate your questions to understand its usage as well, would be very inappropriate to remove. More importantly, that suggestion seems to miss the first section of that requirement
(j) - namely, that the content actually be verified by the CA. Were we to adopt your suggestion - fully removing (j) - then CAs would be fully permitted to introduce invalid, misleading information, which would be contained within the certificate and displayed
to users, without violating the Baseline Requirements.<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<div>
<p class="MsoNormal">Even if we were to scope your request more narrowly, and remove simply that section of (j), we would be returning to the wild west of arbitrary CA contents, and that's undesirable.<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<div>
<p class="MsoNormal">So no, I do not believe any changes to this section are necessary, and hope that all CA participants are reviewing their systems to ensure compliance.<o:p></o:p></p>
</div>
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
</div>
<p class="MsoNormal"><o:p> </o:p></p>
<div>
<p class="MsoNormal">On Thu, Aug 17, 2017 at 8:54 PM, Kirk Hall via Public <<a href="mailto:public@cabforum.org" target="_blank">public@cabforum.org</a>> wrote:<o:p></o:p></p>
<blockquote style="border:none;border-left:solid #CCCCCC 1.0pt;padding:0in 0in 0in 6.0pt;margin-left:4.8pt;margin-right:0in">
<div>
<div>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto">There has been a discussion on a Mozilla list
<span class="m-155593644471316204f0xo1gc-mb-y2"><span style="color:#222222">Certificates with Metadata-Only Subject Fields,
<a href="https://groups.google.com/forum/#!topic/mozilla.dev.security.policy/Sae5lpT02Ng" target="_blank">
https://groups.google.com/forum/#!topic/mozilla.dev.security.policy/Sae5lpT02Ng</a></span>, that concerns BR
</span>7.1.4.2.2. Subject Distinguished Name Fields:<o:p></o:p></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"> <o:p></o:p></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:.5in;text-autospace:none">
<b>j. Other Subject Attributes</b><o:p></o:p></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:.5in;text-autospace:none">
All other optional attributes, when present within the subject field, MUST contain information that has<o:p></o:p></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:.5in;text-autospace:none">
been verified by the CA. <span style="background:yellow">Optional attributes MUST NOT contain metadata such as ‘.’, ‘</span><span style="font-family:"Cambria Math",serif;background:yellow">‐</span><span style="background:yellow">‘, and ‘ ‘ (i.e. space)</span><o:p></o:p></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto;margin-left:.5in">
<span style="background:yellow">characters, and/or any other indication that the value is absent, incomplete, or not applicable</span>.<o:p></o:p></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"> <o:p></o:p></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto">My question to the Forum is – where did this language come from? An RFC? Some other standard? Does this prohibition actually make sense (especially for the OU field, which is
optional but must be verified by the CA if it includes identity-type information)? Can we consider deleting sub (j) or clarifying it only applies to certain fields?<o:p></o:p></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"> <o:p></o:p></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"><b>Ballot 33 – Subject attribute requirements (4 August 2009)</b><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Vote</span><o:p></o:p></p>
<p class="m-155593644471316204line862" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Yes: Entrust, <span style="border:none windowtext 1.0pt;padding:0in">VeriSign</span>, <span style="border:none windowtext 1.0pt;padding:0in">GlobalSign</span>, <span style="border:none windowtext 1.0pt;padding:0in">DigiCert</span>,
T-Systems, <span style="border:none windowtext 1.0pt;padding:0in">QuoVadis</span>, <span style="border:none windowtext 1.0pt;padding:0in">StartCom</span>, Buypass, Trustwave, Comodo, SSC and Microsoft.</span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">No: None.</span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Abstain: None.</span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Result: Accepted.</span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Motion:</span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Steve Roylance made the following motion, and Johnathan Nightingale and Jay Schiavo endorsed it:</span><o:p></o:p></p>
<div class="MsoNormal" align="center" style="text-align:center">
<hr size="2" width="100%" noshade="" style="color:black" align="center">
</div>
<p class="m-155593644471316204line862" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Motion begins</span><o:p></o:p></p>
<div class="MsoNormal" align="center" style="text-align:center">
<hr size="2" width="100%" noshade="" style="color:black" align="center">
</div>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">The Guidelines should be amended by the following erratum.</span><o:p></o:p></p>
<div class="MsoNormal" align="center" style="text-align:center">
<hr size="2" width="100%" noshade="" style="color:black" align="center">
</div>
<p class="m-155593644471316204line862" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Erratum begins</span><o:p></o:p></p>
<div class="MsoNormal" align="center" style="text-align:center">
<hr size="2" width="100%" noshade="" style="color:black" align="center">
</div>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Delete the following paragraph from Section 6.</span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black"> </span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="mso-margin-top-alt:5.0pt;margin-right:0in;margin-bottom:0in;margin-left:.5in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">6. EV Certificate Content Requirements This section sets forth minimum requirements for the content of the EV Certificate as they relate to the identity of the CA and the Subject of
the EV Certificate.</span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black"> </span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Insert the following paragraph:</span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black"> </span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="mso-margin-top-alt:5.0pt;margin-right:0in;margin-bottom:0in;margin-left:.5in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">6. EV Certificate Content Requirements This section sets forth minimum requirements for the content of the EV Certificate as they relate to the identity of the CA and the Subject of
the EV Certificate. Optional data fields within the subject DN should contain either information verified by the CA or be left empty.
<span style="background:yellow">Meta data such as ‘.’, ‘-‘ and ‘ ‘ characters and or any other indication that the field is not applicable should not be used.</span></span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black"> </span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Delete the following paragraph from Section 6(a)(4).</span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black"> </span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Contents These fields MUST contain information only at and above the level of the Incorporating Agency or Registration Agency – e.g., the Jurisdiction of Incorporation for an Incorporating
Agency or Jurisdiction of Registration for a Registration Agency at the country level would include country information but not state or province or locality information; the Jurisdiction of Incorporation for the applicable Incorporating Agency or Registration
Agency at the state or province level would include both country and state or province information, but not locality information; and so forth. Country information MUST be specified using the applicable ISO country code. State or province information, and
locality information (where applicable), for the Subject’s Jurisdiction of Incorporation or Registration MUST be specified using the full name of the applicable jurisdiction.</span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Insert the following paragraph:</span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Contents These fields MUST contain information only relevant to the level of the Incorporating Agency or Registration Agency – e.g., the Jurisdiction of Incorporation for an Incorporating
Agency or Jurisdiction of Registration for a Registration Agency at the country level would include country information but not state or province or locality information; the Jurisdiction of Incorporation for the applicable Incorporating Agency or Registration
Agency at the state or province level would include both country and state or province information, but not locality information ; the Jurisdiction of Incorporation for the applicable Incorporating Agency or Registration Agency at locality level would include
country and also state or province information where the state or province regulates the registration of the entities at the locality level. Country information MUST be specified using the applicable ISO country code. State or province or locality information
(where applicable), for the Subject’s Jurisdiction of Incorporation or Registration MUST be specified using the full name of the applicable jurisdiction.</span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Delete the following paragraph from the Definitions Section.</span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">41. Jurisdiction of Incorporation: In the case of a Private Organization, the country and (where applicable) the state or province where the organization’s legal existence was established
by a filing with (or an act of) an appropriate government agency or entity (e.g., where it was incorporated). In the case of a Government Entity, the country and (where applicable) the state or province where the Entity’s legal existence was created by law.</span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Insert the following paragraph:</span><o:p></o:p></p>
<p class="m-155593644471316204line874" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">41. Jurisdiction of Incorporation: In the case of a Private Organization, the country and (where applicable) the state or province or locality where the organization’s legal existence
was established by a filing with (or an act of) an appropriate government agency or entity (e.g., where it was incorporated). In the case of a Government Entity, the country and (where applicable) the state or province where the Entity’s legal existence was
created by law.</span><o:p></o:p></p>
<div class="MsoNormal" align="center" style="text-align:center">
<hr size="2" width="100%" noshade="" style="color:black" align="center">
</div>
<p class="m-155593644471316204line862" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Erratum ends</span><o:p></o:p></p>
<div class="MsoNormal" align="center" style="text-align:center">
<hr size="2" width="100%" noshade="" style="color:black" align="center">
</div>
<div class="MsoNormal" align="center" style="text-align:center">
<hr size="2" width="100%" noshade="" style="color:black" align="center">
</div>
<p class="m-155593644471316204line862" style="margin:0in;margin-bottom:.0001pt;background:white;font-variant-ligatures:normal;font-variant-caps:normal;text-align:start;text-decoration-style:initial;text-decoration-color:initial;word-spacing:0px">
<span style="font-size:11.0pt;font-family:"Calibri",sans-serif;color:black">Motion ends</span><o:p></o:p></p>
<p class="MsoNormal" style="mso-margin-top-alt:auto;mso-margin-bottom-alt:auto"> <o:p></o:p></p>
</div>
</div>
<p class="MsoNormal" style="margin-bottom:12.0pt"><br>
_______________________________________________<br>
Public mailing list<br>
<a href="mailto:Public@cabforum.org">Public@cabforum.org</a><br>
<a href="https://cabforum.org/mailman/listinfo/public" target="_blank">https://cabforum.org/mailman/listinfo/public</a><o:p></o:p></p>
</blockquote>
</div>
<div style="border:none;border-left:solid blue 1.5pt;padding:0in 0in 0in 4.0pt">
<div>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
</div>
</div>
</body>
</html>