Field 3 related to digital certificate in DRM

Domain

1. "certificate chain" in domainrequest
"Is sent unless certificate caching is indicated in the RI context with this Ri ".

2. "peer key identifier" in join domainrequest
Must send "if, and only if, it has stored the ri pk corresponding to the stored Ri ID as specified in 5.4.2.4.1 ".

3. "No OCSP Response" in join domainrequest
Must send "if, and only if, it has a complete set of valid OCSP responses for the RI's certificate chain ".

4. "OCSP responder key identifier" in join domainrequest
Must send "if, and only if, it has stored an OCSP responder key for this Ri ".

5. "hash chain support" in join domainrequest
"It signals that the client supports a technique of generating domain keys through hash chains ".
Must send "if, and only if, it supports hash-chained domain keys ".

6. "certificate chain" in joindomainresponse
"Must be present unless" 2 present.

7. "OCSP Response" in joindomainresponse
"Shall be a complete set of valid OCSP responses for the RI's certificate chain ".
"Will not be sent if" 3 present.

8. "hash chain support" in joindomainresponse
"Indicates that the Ri is using the technique of generating domain keys through hash chains ".
"The Ri must not include this extension" unless 5 present.
"If the device has es hash chains support extension then it needs only store the latest Domain key for a given domain ".

Roupload

9. "certificate chain" in rouploadrequest
"This parameter is sent unless certificate caching is indicated in the RI context with this Ri ".

10. "peer key identifier" in rouploadrequest
Same to 2

11. "No OCSP Response" in rouploadrequest
Same to 3

12. "OCSP responder key identifier" in rouploadrequest
Same to 4

13. "certificate chain" in rouploadresponse
"Must be present unless" 10 present.

14. "OCSP Response" in rouploadresponse
"Shall be a complete set of valid OCSP responses for the RI's certificate chain ".
"Will not be sent if" 11 present.