Unwrapping of GetCACert is currently not possible due to the same problems described in #63: It is not expected to get an unsigned response with not signature.
If we look at the message created by openca-scep, we can see that this is not even a valid pkiMessage at all because all the required attributes are missing. But then again, they are not signed and the request has no data attached at all. So maybe this is a special case without all of those parameters?
Unwrapping of GetCACert is currently not possible due to the same problems described in #63: It is not expected to get an unsigned response with not signature.
If we look at the message created by openca-scep, we can see that this is not even a valid pkiMessage at all because all the required attributes are missing. But then again, they are not signed and the request has no data attached at all. So maybe this is a special case without all of those parameters?