Standard X.509 v3 CRL Extensions
Appendix
C
Certificate and CRL Extensions
361
authorityKeyIdentifier
OID
2.5.29.35
Reference
http://www.ietf.org/rfc/rfc2459.txt
5.2.1
Discussion
The Authority Key Identifier extension for a CRL identifies the public key
corresponding to the private key used to sign the CRL. For details, see the
discussion under certificate extensions at authorityKeyIdentifier.
CMS Version Support
Refer to “AuthorityKeyIdentifier Rule” on page 281.
•
CMS 4.1
: Not supported
•
CMS 4.2
: Supported
•
CMS 4.2-SP2
: Supported
•
CMS 4.5
: Supported
•
CMS 6.0
: Supported
CRLNumber
OID
2.5.29.20
Reference
http://www.ietf.org/rfc/rfc2459.txt
5.2.3
Criticality
This extension must not be critical.
Discussion
The CRL Number extension specifies a sequential number for each CRL issued by a
CA. It allows users to easily determine when a particular CRL supersedes another
CRL.
PKIX requires that all CRLs have this extension.
Summary of Contents for Certificate Management System 6.0
Page 1: ...Plug Ins Guide Netscape Certificate Management System Version6 0 March 2002...
Page 10: ...10 Netscape Certificate Management System Plug Ins Guide March 2002...
Page 62: ...Enrollment Forms 62 Netscape Certificate Management System Plug Ins Guide March 2002...
Page 308: ...NTEventLog Plug in Module 308 Netscape Certificate Management System Plug Ins Guide March 2002...