Keys shall be delivered within an JWS according to mts4 but with the following content:
The JWS Protected Header shall contain the following fields:
{
"alg": 'EC',
"kid": string <kid defined from the AB>,
"authid": string <your PID> ,
"notvalidafter": integer (unix timestamp),
"serial": integer (serialNumber),
}
The JWS Payload shall contain the following fields:
{
'mtbPublicKeys' [ JWK Object, JWK Object .. JWK Object ],
}