Certificate

gfipm:2.0:entity:Certificate

Certificate

An electronic certificate used by the entity as a cryptographic trust anchor within a federation, for the purposes of digital signatures and/or encryption. The certificate is represented in X.509 v3, base-64 encoded format.

Base-64 Binary

2.0

Some entities may have multiple certificates, e.g. a signing certificate and an encryption certificate. When encoding this attribute within a GFIPM trust fabric document, it is possible to specify multiple certificates for an entity via the use of multiple XML elements, with one certificate per element.

None Provided

N/A

N/A

SAML 2.0 ("Trust Fabric") Metadata

This attribute can correspond to the value at any SAML 2.0 Metadata XPath that meets the following XPath query: "md:EntitiesDescriptor/md:EntityDescriptor/*/md:KeyDescriptor/ds:KeyInfo/ds:X509Data/ds:X509Certificate/text()".