PKI Library documentation
PKI Library documentation
System.Security.Cryptography.X509Certificates
AuthorityKeyIdentifierFlags Enumeration
SafeCRLHandleContext Class
SafeCTLHandleContext Class
X500RdnAttribute Class
X500RdnAttributeCollection Class
X509AlternativeName Class
X509AlternativeNameCollection Class
X509AlternativeNamesEnum Enumeration
X509ApplicationPoliciesExtension Class
X509ApplicationPolicyConstraintsExtension Class
X509ApplicationPolicyMappingsExtension Class
X509ArchiveCutoffExtension Class
X509AuthorityInformationAccessExtension Class
X509AuthorityKeyIdentifierExtension Class
X509CAVersionExtension Class
X509CEPEnrollmentPropertyInfo Class
X509CertificateContextProperty Class
X509CertificateContextPropertyCollection Class
X509CertificatePoliciesExtension Class
X509CertificatePolicy Class
X509CertificatePolicyCollection Class
X509CertificatePolicyConstraintsExtension Class
X509CertificatePolicyMappingsExtension Class
X509CertificatePropertyType Enumeration
X509CertificateTemplateExtension Class
X509CNGKeyUsages Enumeration
X509CRL2 Class
X509CRL2Collection Class
X509CRLDistributionPointsExtension Class
X509CRLEntry Class
X509CRLEntryCollection Class
X509CRLNumberExtension Class
X509CRLReferenceExtension Class
X509CrossCertificateDistributionPointsExtension Class
X509CTL Class
X509CTLEntry Class
X509CTLEntryCollection Class
X509DistributionPoint Class
X509EncodingType Enumeration
X509EnrollmentPropertyInfo Class
X509FreshestCRLExtension Class
X509IssuerAlternativeNamesExtension Class
X509KeySpecFlags Enumeration
X509NameConstraintsExtension Class
X509NextCRLPublishExtension Class
X509NonceExtension Class
X509PolicyQualifier Class
X509PolicyQualifierCollection Class
X509PolicyQualifierType Enumeration
X509PublishedCrlLocationsExtension Class
X509RevocationReasons Enumeration
X509ServiceLocatorExtension Class
X509SubjectAlternativeNamesExtension Class
Click or drag to resize

System.Security.Cryptography.X509Certificates Namespace

Contains extension classes for default .NET Framework System.Security.Cryptography.X509Certificates namespace.
Classes
  ClassDescription
Public classSafeCRLHandleContext

SafeCRLHandleContext provides a SafeHandle class for an X509CRL2 certificate revocation list context as stored in its Handle property. This can be used instead of the raw IntPtr to avoid races with the garbage collector, ensuring that the X509Certificate object is not cleaned up from underneath you while you are still using the handle pointer.

This safe handle type represents a native CRL_CONTEXT.

A SafeCRLHandleContext for an X509CRL2 can be obtained by calling the GetSafeContext extension method.

Public classSafeCTLHandleContext

SafeCTLHandleContext provides a SafeHandle class for an X509CTL context as stored in its Handle property. This can be used instead of the raw IntPtr to avoid races with the garbage collector, ensuring that the X509Certificate object is not cleaned up from underneath you while you are still using the handle pointer.

This safe handle type represents a native CTL_CONTEXT.

A SafeCTLHandleContext for an X509CTL can be obtained by calling the GetSafeContext extension method.

Public classX500RdnAttribute
Represents X.500 Distinguished Name relative attribute.
Public classX500RdnAttributeCollection
Represents a collection of X500RdnAttribute objects. For display purposes RDN attributes are stored in this collection in reverse order than they stored in binary form.
Public classX509AlternativeName
Represents a single alternative name used in X509SubjectAlternativeNamesExtension and X509IssuerAlternativeNamesExtension classes. This class supports all alternative name types defined in RFC 5280 and supports two Microsoft proprietary alternative names: Guid and User Principal Name (UPN).
Public classX509AlternativeNameCollection
Represents a collection of X509AlternativeName objects.
Public classX509ApplicationPoliciesExtension
Represents a Microsoft's proprietary Application Policies extension which is another implementation of Enhanced Key Usage extension.
Public classX509ApplicationPolicyConstraintsExtension
Represents the X.509 Application Policy Constraints certificate extension. The policy constraints extension can be used in certificates issued to CAs.The policy constraints extension constrains path validation in two ways. It can be used to prohibit policy mapping or require that each certificate in a path contain an acceptable policy identifier.
Public classX509ApplicationPolicyMappingsExtension
Represents application policy mappings certificate extension.
Public classX509ArchiveCutoffExtension
Represents X.509 Archive Cutoff extension which is first defined in RFC2560.
Public classX509AuthorityInformationAccessExtension
Defines Authority Information Access extension (AIA). This extension is used by certificate chaining engine to build certificate chain (retrieve issuer certificate) and/or to check current certificate revocation status by using Online Certificate Status Protocol (OCSP).
Public classX509AuthorityKeyIdentifierExtension
Represents Authority Key Identifier extension. The authority key identifier extension provides a means of identifying the public key corresponding to the private key used to sign a certificate.
Public classX509CAVersionExtension
Represents CA Version extension that describes the CA certificate and CA private key index used in CA certificate and when signing CRLs.
Public classX509CEPEnrollmentPropertyInfo
Represents CEP enrollment property information when the certificate was requested by using Certificate Enrollment Web Services ([MS-XCEP] and [MS-WSTEP]).
Public classX509CertificateContextProperty
Represents certificate context property object in the certificate store.
Public classX509CertificateContextPropertyCollection
Represents a collection of X509CertificateContextProperty objects.
Public classX509CertificatePoliciesExtension
X509CertificatePoliciesExtension represents a X.509 Certificate Policies extension. The certificate policies extension contains a sequence of one or more policy information terms, each of which consists of an object identifier (OID) and optional qualifiers.
Public classX509CertificatePolicy
Represents a single certificate policy which consists of an object identifier (OID) and optional qualifiers.
Public classX509CertificatePolicyCollection
Represents a collection of X509CertificatePolicy objects.
Public classX509CertificatePolicyConstraintsExtension
Represents the X.509 Certificate Policy Constraints certificate extension. The policy constraints extension can be used in certificates issued to CAs.The policy constraints extension constrains path validation in two ways. It can be used to prohibit policy mapping or require that each certificate in a path contain an acceptable policy identifier.
Public classX509CertificatePolicyMappingsExtension
Represents certificate policy mappings certificate extension.
Public classX509CertificateTemplateExtension
Defines Microsoft proprietary X.509 extension that represents certificate template extension used by Enterprise CA to store certificate template information. This extension is used by CAs and certificate autoenrollment to perform certificate-based renewals.
Public classX509CRL2
Provides methods that help you use X.509 certificate revocation lists (CRL).
Public classX509CRL2Collection
Represents a collection of X509CRL2 objects.
Public classX509CRLDistributionPointsExtension
Defines CRL Distribution Points (CDP) extension. This extension is used by a certificate chaining engine to validate the certificate revocation status. Normally, this extension contains URLs to a issuer CRL locations.
Public classX509CRLEntry
Represents a CRL entry of certificate revocation list that contains information about revoked certificate.
Public classX509CRLEntryCollection
Represents a collection of X509CRLEntry objects.
Public classX509CRLNumberExtension
Represents a CRL Number certificate revocation list extension.
Public classX509CRLReferenceExtension
Defines the id-pkix-ocsp-crl extension (defined in RFC2560). This class cannot be inherited.
Public classX509CrossCertificateDistributionPointsExtension
Represents Cross-Certificate Distribution Points certificate extension. The cross certificate distribution point (CCDP) extension identifies where cross certificates related to a particular certificate can be obtained and how often that location is updated. Windows XP and later operating systems use this extension for the discovery of cross-certificates that might be used during the path discovery and chain building process.
Public classX509CTL Obsolete.
Represents a X.509 Certificate Trust List (CTL).
Public classX509CTLEntry Obsolete.
Represents a X.509 certificate trust list (CTL) entry element. Generally, this elements describes the certificate in the trust list.
Public classX509CTLEntryCollection Obsolete.
Represents a collection of X509CTLEntry objects.
Public classX509DistributionPoint
Represents a single DistributionPoint element of CRL Distribution Points certificate extension.
Public classX509EnrollmentPropertyInfo
Represents certificate enrollment information when the certificate is pending for CA manager approval. This information is used for enrollment API to determine request status and install issued certificate when request is approved.
Public classX509FreshestCRLExtension
Defines Freshest or Delta CRL (certificate revocation list) extension. This extension is used by a certificate chaining engine to locate Delta CRL locations.
Public classX509IssuerAlternativeNamesExtension
X509IssuerAlternativeNamesExtension represents a X.509 issuer alternative names extension. The issuer alternative name extension allows identities to be bound to the issuer of the certificate. Issuer alternative names are not processed as part of the certification path validation algorithm. That is, issuer alternative names are not used in name chaining and name constraints are not enforced.
Public classX509NameConstraintsExtension
The name constraints extension, which MUST be used only in a CA certificate, indicates a name space within which all subject names in subsequent certificates in a certification path MUST be located. Restrictions apply to the subject distinguished name and apply to subject alternative names. Restrictions apply only when the specified name form is present. If no name of the type is in the certificate, the certificate is acceptable. More details about Name constraints extension processing: RFC 5280.
Public classX509NextCRLPublishExtension
Defines the date and time at which the certification authority schedules new CRL publication.

Unlike Next Update field in the X.509 certificate revocation list (CRL) that specifies the ultimate validity of the CRL, this extension provides information when CA schedules CRL update which may occur prior to CRL expiration. This allows to fetch new CRL timely.

Public classX509NonceExtension
Defines the id-pkix-ocsp-nonce extension (defined in RFC2560). This class cannot be inherited.
Public classX509PolicyQualifier
Represents a certificate policy qualifier as specified in the RFC 5280.

Certificate policy qualifier may be either an URL to a online policy repository or textual policy information.

Public classX509PolicyQualifierCollection
Represents a collection of X509PolicyQualifier objects.
Public classX509PublishedCrlLocationsExtension
Defines Published CRL Locations extension. This extension is included in CRLs and is used by a certification authority to provide information about CRL publication location in Active Directory.
Public classX509ServiceLocatorExtension
Defines the id-pkix-ocsp-service-locator extension (defined in RFC2560). This class cannot be inherited.
Public classX509SubjectAlternativeNamesExtension
X509SubjectAlternativeNamesExtension represents a X.509 alternative names extension. The subject alternative name extension allows identities to be bound to the subject of the certificate. These identities may be included in addition to or in place of the identity in the subject field of the certificate.
Enumerations
  EnumerationDescription
Public enumerationAuthorityKeyIdentifierFlags
Contains enumeration of components included in the Authority Key Identifier (AKI) certificate extension.

This enumeration has a FlagsAttribute attribute that allows a bitwise combination of its member values.

Public enumerationX509AlternativeNamesEnum
Contains alternative name enumeration used by Subject Alternative Names extension.
Public enumerationX509CertificatePropertyType
Defines the list of possible certificate context properties when the certificate is placed in the Certificate Store.
Public enumerationX509CNGKeyUsages
Defines key usages for cryptography next generation (CNG) keys.

This enumeration has a FlagsAttribute attribute that allows a bitwise combination of its member values.

Public enumerationX509EncodingType
Defines the encoding type for X.509 objects.
Public enumerationX509KeySpecFlags
An X509KeySpecFlags enumeration value that specifies the supported key operations.

This enumeration has a FlagsAttribute attribute that allows a bitwise combination of its member values.

Public enumerationX509PolicyQualifierType
The X509PolicyQualifierType enumeration type specifies the type of qualifier applied to a certificate policy
Public enumerationX509RevocationReasons
Represents certificate revocation reasons.