V1.01.192.2025.06.06

Signed-off-by: Marc S. Weidner <msw@coresecret.dev>

draft-weidner-catalog-rr-ext-00.rfc.xml

@@ -1068,7 +1068,7 @@ https://caa-ct-sts.<domain>.<tld>/.well-known/caa-ct-sts.txt
             After fetching, Certification Authorities parse the file as above.
 
             If the HTTP request fails for whatever reason,
-            (network error, invalid cert, status ≠ 200, or parse error),
+            (network error, invalid cert, status != 200, or parse error),
             the policy is considered unavailable or invalid, and Certification Authorities fall back to "no policy".
 
             HTTP 3xx redirects <strong>MUST NOT</strong> be followed, and HTTP caching
@@ -1377,7 +1377,7 @@ https://caa-ct-sts.<domain>.<tld>/.well-known/caa-ct-sts.txt
         <name>Policy Redundancy Considerations</name>
         <t>Let c be the number of critical CT-Logs and w be the number of whitelisted (non-critical) CT-Logs,
           then the following expression is strongly <strong>RECOMMENDED</strong>:
-          |c| ≥ n + 1 ∧ |w| ≤ 2
+          |c| >= n + 1 ^ |w| &lt;= 2
         </t>
         <t>While the "critical=true" flag in the CAA <strong>"issuect"</strong> Parameter enforces that every
           Certificate issuance must be logged to all specified CT-Logs, this strict requirement can introduce
@@ -1459,10 +1459,10 @@ https://caa-ct-sts.<domain>.<tld>/.well-known/caa-ct-sts.txt
           <li>
             <t>TLSA Usage</t>
             <ul>
-              <li>3 1 1 — SHA-256 hash of the leaf certificate's SPKI</li>
+              <li>3 1 1 - SHA-256 hash of the leaf certificate's SPKI</li>
-              <li>3 1 2 — SHA-512 hash of the leaf certificate's SPKI</li>
+              <li>3 1 2 - SHA-512 hash of the leaf certificate's SPKI</li>
-              <li>2 1 1 — SHA-256 hash of the issuing intermediate certificate's SPKI</li>
+              <li>2 1 1 - SHA-256 hash of the issuing intermediate certificate's SPKI</li>
-              <li>2 1 2 — SHA-512 hash of the issuing intermediate certificate's SPKI</li>
+              <li>2 1 2 - SHA-512 hash of the issuing intermediate certificate's SPKI</li>
             </ul>
             <t>Here, TLSA-usage 3 (DANE-EE) and 2 (DANE-TA), selector 1 (SPKI), and matching
               types 1 (SHA-256) and 2 (SHA-512) ensure that CAs validate the exact certificates
@@ -1600,7 +1600,7 @@ ct_policy: ( "example.ca; \
         <name>Normative References</name>
         <reference anchor="ISO-8601" target="https://www.iso.org/standard/70907.html">
           <front>
-            <title>Date and time — Representations for information interchange</title>
+            <title>Date and time - Representations for information interchange</title>
             <author>
               <organization>International Organization for Standardization</organization>
             </author>
@@ -1659,7 +1659,7 @@ ct_policy: ( "example.ca; \
         <name>Informative References</name>
         <reference anchor="POSIX" target="https://pubs.opengroup.org/onlinepubs/9699919799.2018edition/">
           <front>
-            <title>Portable Operating System Interface (POSIX™) - Base Specifications</title>
+            <title>Portable Operating System Interface (POSIX) - Base Specifications</title>
             <author>
               <organization>The Institute of Electrical and Electronics Engineers; The Open Group</organization>
             </author>