* the hash of the certificate, using the same hash algorithm
* as is used to create and verify the certificate signature
*/
- if ((certHash = OSSL_CMP_X509_digest(ctx->newCert)) == NULL)
+ if ((certHash = X509_digest_sig(ctx->newCert)) == NULL)
goto err;
if (!ossl_cmp_certstatus_set0_certHash(certStatus, certHash))