3.4.7.4 Transition to QM Rekey Requested State
When initiator enters Quick Mode Rekey Requested state (see sections 3.4.5.3 and 3.4.7.4), it MUST check whether all the following conditions are met:
The maximum number of quick modes for this main mode security association (MM SA) has been reached, or the lifetime of the MM has expired.
One-way authentication is used to establish the MM. This information is included in the IKE Peer Authentication Data stored in the PAD (see [RFC4301] section 4.4.3.2).
If not all these conditions are met, the initiator MUST proceed to Quick Mode Initiator First Packet Sent state as specified in section 3.4.7.3.
Otherwise, the initiator MUST proceed to Quick Mode Notify Acquire Sent state after sending a packet formatted as specified in the following diagram:

Figure 14: Quick Mode Acquire Notify packet
The message MUST be constructed as follows:
HDR: The ISAKMP header MUST be identical to the first IKE phase 2 initiator packet, as specified in [RFC2409] section 5.5, with this exception: the exchange type MUST be 246 (Notify exchange type). The Encrypted flag MUST be set.
Notify (Acquire): The ACQUIRE Notify payload MUST be included, be constructed as specified in section 2.2.3.5, and have the RELIABLE_NOTIFY_FLAG set.