What do you mean verify a certificate? Do you mean the certificate used in WS-Security or is this some certificate embedded in the body of the SOAP request? If it is the former, SALT should be verifying the certificate. If the later, I don't think that is something for SALT to do.
Oracle Tuxedo Chief Architect