add more prose about how the digest is generated

commit: eb9ec00ff857e2788938baa50beb9c92e2b693db [log] [tgz]
author: Paul Kehrer <paul.l.kehrer@gmail.com> Sat Aug 08 10:03:02 2015 -0500
committer: Paul Kehrer <paul.l.kehrer@gmail.com> Sat Aug 08 10:22:45 2015 -0500
tree: 5017abe43310080b866f872cdebfe0b1329ff931
parent: 679e8f5b825be0d4f6c5ee77bff639efcaeac873 [diff] [blame]
diff --git a/docs/x509/reference.rst b/docs/x509/reference.rst
index 61f73e9..e83a4ac 100644
--- a/docs/x509/reference.rst
+++ b/docs/x509/reference.rst

@@ -1125,7 +1125,9 @@
 
         Creates a new SubjectKeyIdentifier instance using the public key
         provided to generate the appropriate digest. This should be the public
-        key that is in the certificate.
+        key that is in the certificate. The generated digest is the SHA1 hash
+        of the ``subjectPublicKey`` ASN.1 bit string. This is the first
+        recommendation in :rfc:`5280` section 4.2.1.2.
 
         :param public_key: One of
             :class:`~cryptography.hazmat.primitives.asymmetric.rsa.RSAPublicKey`
commit	eb9ec00ff857e2788938baa50beb9c92e2b693db	[log] [tgz]
author	Paul Kehrer <paul.l.kehrer@gmail.com>	Sat Aug 08 10:03:02 2015 -0500
committer	Paul Kehrer <paul.l.kehrer@gmail.com>	Sat Aug 08 10:22:45 2015 -0500
tree	5017abe43310080b866f872cdebfe0b1329ff931
parent	679e8f5b825be0d4f6c5ee77bff639efcaeac873 [diff] [blame]