Provide some mechanism for diagnosing correctness of MN certificates
There is a need for diagnosing the validity and correctness of Member Node client certificates to identify both certificates that are no longer valid (e.g., expiry) or certificates that are incorrectly deployed by the Member Node. Potential options include:
- A new MN client API for certification diagnosis
- A certificate reflection process that notifies the MN operator of certificate health
Level of effort and efficacy should be considered in the approach.