4. Guide
For convenience, these figures summarize the structures, encodings, and references in the following sections:
| Sec. | Label | ASN.1 Type | Reference | Module |
|---|---|---|---|---|
| 5 | CERTIFICATE | Certificate | [RFC5280] | id-pkix1-e |
| 6 | X509 CRL | CertificateList | [RFC5280] | id-pkix1-e |
| 7 | CERTIFICATE REQUEST | CertificationRequest | [RFC2986] | id-pkcs10 |
| 8 | PKCS7 | ContentInfo | [RFC2315] | id-pkcs7* |
| 9 | CMS | ContentInfo | [RFC5652] | id-cms2004 |
| 10 | PRIVATE KEY | PrivateKeyInfo ::= OneAsymmetricKey | [RFC5208] [RFC5958] | id-pkcs8 id-aKPV1 |
| 11 | ENCRYPTED PRIVATE KEY | EncryptedPrivateKeyInfo | [RFC5958] | id-aKPV1 |
| 12 | ATTRIBUTE CERTIFICATE | AttributeCertificate | [RFC5755] | id-acv2 |
| 13 | PUBLIC KEY | SubjectPublicKeyInfo | [RFC5280] | id-pkix1-e |
Figure 4: Convenience Guide
-----------------------------------------------------------------------
id-pkixmod OBJECT IDENTIFIER ::= {iso(1) identified-organization(3)
dod(6) internet(1) security(5) mechanisms(5) pkix(7) mod(0)}
id-pkix1-e OBJECT IDENTIFIER ::= {id-pkixmod pkix1-explicit(18)}
id-acv2 OBJECT IDENTIFIER ::= {id-pkixmod mod-attribute-cert-v2(61)}
id-pkcs OBJECT IDENTIFIER ::= {iso(1) member-body(2) us(840)
rsadsi(113549) pkcs(1)}
id-pkcs10 OBJECT IDENTIFIER ::= {id-pkcs 10 modules(1) pkcs-10(1)}
id-pkcs7 OBJECT IDENTIFIER ::= {id-pkcs 7 modules(0) pkcs-7(1)}
id-pkcs8 OBJECT IDENTIFIER ::= {id-pkcs 8 modules(1) pkcs-8(1)}
id-sm-mod OBJECT IDENTIFIER ::= {id-pkcs 9 smime(16) modules(0)}
id-aKPV1 OBJECT IDENTIFIER ::= {id-sm-mod mod-asymmetricKeyPkgV1(50)}
id-cms2004 OBJECT IDENTIFIER ::= {id-sm-mod cms-2004(24)}
- This OID does not actually appear in PKCS #7 v1.5 [RFC2315]. It was defined in the ASN.1 module to PKCS #7 v1.6 [P7v1.6], and has been carried forward through PKCS #12 [RFC7292].
Figure 5: ASN.1 Module Object Identifier Value Assignments