> Why don't you trust section 4? > Why do you trust section 6, instead? Because verisign's root certificates are v1 which are widely accepted. --Kazu