From f27e6d22c7a436853dac76c6d3c913c606653be7 Mon Sep 17 00:00:00 2001
From: gco <gco@google.com>
Date: Thu, 18 Jun 2026 05:13:15 -0700
Subject: [PATCH 1/5] Add additional text clarifying how to match vct_values
 and doctype_value.

---
 1.1/openid-4-verifiable-presentations-1_1.md | 15 ++++++++-------
 1 file changed, 8 insertions(+), 7 deletions(-)

diff --git a/1.1/openid-4-verifiable-presentations-1_1.md b/1.1/openid-4-verifiable-presentations-1_1.md
index 198af1b2..bc2f00ba 100644
--- a/1.1/openid-4-verifiable-presentations-1_1.md
+++ b/1.1/openid-4-verifiable-presentations-1_1.md
@@ -2889,8 +2889,7 @@ The following is an ISO mdoc specific parameter in the `meta` parameter in a Cre
 
 `doctype_value`:
 : REQUIRED. String that specifies an allowed value for the
-doctype of the requested Verifiable Credential. It MUST
-be a valid doctype identifier as defined in [@ISO.18013-5].
+doctype of the requested Verifiable Credential. It MUST be a valid doctype identifier as defined in [@ISO.18013-5]. For a mdoc to satisfy the Credential Query, the value of the `docType` element in the `MobileSecurityObject` structure MUST be equal to the `doctype_value`.
 
 ### Parameter in the Claims Query {#mdocs_claims_query}
 
@@ -3249,11 +3248,13 @@ The following is a non-normative example of `client_metadata` request parameter
 The following is an SD-JWT VC specific parameter in the `meta` parameter in a Credential Query as defined in (#credential_query).
 
 `vct_values`:
-: REQUIRED. A non-empty array of strings that specifies allowed values for
-the type of the requested Verifiable Credential. All elements in the array MUST
-be valid type identifiers as defined in [@!I-D.ietf-oauth-sd-jwt-vc]. The Wallet
-MAY return Credentials that inherit from any of the specified types, following
-the inheritance logic defined in [@!I-D.ietf-oauth-sd-jwt-vc].
+: REQUIRED. A non-empty array of strings that specifies allowed values for the type of the requested Verifiable Credential. All elements in the array MUST be valid type identifiers as defined in [@!I-D.ietf-oauth-sd-jwt-vc]. To satisfy the Credential Query, a Credential MUST either have or inherit from a type that is included in the `vct_values` array as defined in [@!I-D.ietf-oauth-sd-jwt-vc]. 
+
+A Credential's type can be determined as satifying the Credential Query as follows:
+
+1. Check if the `vct` in the Credential is contained in the `vct_values` array. If it is, the Credential satisfies the Credential Query.
+1. If is is not, check if the Credential has an `extends` claim. If it does repeat this process for the Type metadata  specified by the `extends` value, until either a match is found or the `extends` claim is not present.
+1. If none of the above conditions are met, the Credential's type does not satisfy the Credential Query.
 
 ### Presentation Response
 

From 717390cbd5680caf5923c8a34ab5879baee333bf Mon Sep 17 00:00:00 2001
From: Gareth Oliver <gco@google.com>
Date: Thu, 18 Jun 2026 08:30:24 -0700
Subject: [PATCH 2/5] Update 1.1/openid-4-verifiable-presentations-1_1.md

Co-authored-by: Frederik Krogsdal Jacobsen <fkj@users.noreply.github.com>
---
 1.1/openid-4-verifiable-presentations-1_1.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/1.1/openid-4-verifiable-presentations-1_1.md b/1.1/openid-4-verifiable-presentations-1_1.md
index bc2f00ba..9f773421 100644
--- a/1.1/openid-4-verifiable-presentations-1_1.md
+++ b/1.1/openid-4-verifiable-presentations-1_1.md
@@ -3253,7 +3253,7 @@ The following is an SD-JWT VC specific parameter in the `meta` parameter in a Cr
 A Credential's type can be determined as satifying the Credential Query as follows:
 
 1. Check if the `vct` in the Credential is contained in the `vct_values` array. If it is, the Credential satisfies the Credential Query.
-1. If is is not, check if the Credential has an `extends` claim. If it does repeat this process for the Type metadata  specified by the `extends` value, until either a match is found or the `extends` claim is not present.
+1. If `vct` in the Credential is not contained in the `vct_values` array, check if the Credential has an `extends` claim. If it does, repeat this process for the Type metadata specified by the `extends` value, until either a match is found or the `extends` claim is not present.
 1. If none of the above conditions are met, the Credential's type does not satisfy the Credential Query.
 
 ### Presentation Response

From 7a092dbe13f3c6317347db8e1a4b7ea977a1fc36 Mon Sep 17 00:00:00 2001
From: Gareth Oliver <gco@google.com>
Date: Thu, 18 Jun 2026 08:30:33 -0700
Subject: [PATCH 3/5] Update 1.1/openid-4-verifiable-presentations-1_1.md

Co-authored-by: Frederik Krogsdal Jacobsen <fkj@users.noreply.github.com>
---
 1.1/openid-4-verifiable-presentations-1_1.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/1.1/openid-4-verifiable-presentations-1_1.md b/1.1/openid-4-verifiable-presentations-1_1.md
index 9f773421..0c158cc1 100644
--- a/1.1/openid-4-verifiable-presentations-1_1.md
+++ b/1.1/openid-4-verifiable-presentations-1_1.md
@@ -3254,7 +3254,7 @@ A Credential's type can be determined as satifying the Credential Query as follo
 
 1. Check if the `vct` in the Credential is contained in the `vct_values` array. If it is, the Credential satisfies the Credential Query.
 1. If `vct` in the Credential is not contained in the `vct_values` array, check if the Credential has an `extends` claim. If it does, repeat this process for the Type metadata specified by the `extends` value, until either a match is found or the `extends` claim is not present.
-1. If none of the above conditions are met, the Credential's type does not satisfy the Credential Query.
+1. If none of the above conditions are met, the Credential does not satisfy the Credential Query.
 
 ### Presentation Response
 

From 12ea8bacd34a9c70aba9bd988457db4c9201434a Mon Sep 17 00:00:00 2001
From: Gareth Oliver <gco@google.com>
Date: Mon, 22 Jun 2026 05:41:17 -0700
Subject: [PATCH 4/5] Apply suggestion from @fkj

Co-authored-by: Frederik Krogsdal Jacobsen <fkj@users.noreply.github.com>
---
 1.1/openid-4-verifiable-presentations-1_1.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/1.1/openid-4-verifiable-presentations-1_1.md b/1.1/openid-4-verifiable-presentations-1_1.md
index 0c158cc1..25ac0648 100644
--- a/1.1/openid-4-verifiable-presentations-1_1.md
+++ b/1.1/openid-4-verifiable-presentations-1_1.md
@@ -3253,7 +3253,7 @@ The following is an SD-JWT VC specific parameter in the `meta` parameter in a Cr
 A Credential's type can be determined as satifying the Credential Query as follows:
 
 1. Check if the `vct` in the Credential is contained in the `vct_values` array. If it is, the Credential satisfies the Credential Query.
-1. If `vct` in the Credential is not contained in the `vct_values` array, check if the Credential has an `extends` claim. If it does, repeat this process for the Type metadata specified by the `extends` value, until either a match is found or the `extends` claim is not present.
+1. If `vct` in the Credential is not contained in the `vct_values` array, check if the Credential has an `extends` claim. If it does, repeat this process for the Type metadata specified by the `extends` value, until either a match is found or the `extends` claim is not present. If a circular dependency is detected while following `extends` claims, the Credential does not satisfy the Credential Query.
 1. If none of the above conditions are met, the Credential does not satisfy the Credential Query.
 
 ### Presentation Response

From 368d4ca6dca2a7686074bb9298e9cd7042d54852 Mon Sep 17 00:00:00 2001
From: Gareth Oliver <gco@google.com>
Date: Mon, 22 Jun 2026 05:43:18 -0700
Subject: [PATCH 5/5] Apply suggestion from @GarethCOliver

---
 1.1/openid-4-verifiable-presentations-1_1.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/1.1/openid-4-verifiable-presentations-1_1.md b/1.1/openid-4-verifiable-presentations-1_1.md
index 25ac0648..daed756f 100644
--- a/1.1/openid-4-verifiable-presentations-1_1.md
+++ b/1.1/openid-4-verifiable-presentations-1_1.md
@@ -3253,7 +3253,7 @@ The following is an SD-JWT VC specific parameter in the `meta` parameter in a Cr
 A Credential's type can be determined as satifying the Credential Query as follows:
 
 1. Check if the `vct` in the Credential is contained in the `vct_values` array. If it is, the Credential satisfies the Credential Query.
-1. If `vct` in the Credential is not contained in the `vct_values` array, check if the Credential has an `extends` claim. If it does, repeat this process for the Type metadata specified by the `extends` value, until either a match is found or the `extends` claim is not present. If a circular dependency is detected while following `extends` claims, the Credential does not satisfy the Credential Query.
+1. If `vct` in the Credential is not contained in the `vct_values` array, check if the Credential has an `extends` claim. If it does, repeat this process for the Type metadata specified by the `extends` value, until either a match is found or the `extends` claim is not present. If a circular dependency is detected while following the `extends` claims, the Credential does not satisfy the Credential Query.
 1. If none of the above conditions are met, the Credential does not satisfy the Credential Query.
 
 ### Presentation Response