On 6/11/02 6:15 PM, "Eric A. Hall" <ehall@ehsco.com> wrote: >> Why do you think the roots and TLDs would get millions of TCP queries for >> their certs? Why would anyone want to get the certs of the roots or tlds? > Why do you think anybody would cache them long-term if they were right > there handy in the DNS database? Let me try again. Why would anyone care about root or TLD _certificates_? They might be interested in the root or TLD sig/key records but that is a completely different thing and unrelated to cert records. Rgds, -drc