To perform certificate validation, your server application calls the CSSM_TP_PassThrough API (see CSSM_TP_PassThrough), passing it the certificate chain to verify. The API returns a Boolean value indicating success or failure, along with additional information about the certificate chain. The pkitpsamp.c code sample that follows at Code sample of the PKITP program (pkitpsamp.c) is provided as an aid for developing your own server application. By default, you can find this file in the /usr/lpp/pkiserv/samples directory.