Request for Comments

RFC 2560

X.509 Internet Public Key Infrastructure Online Certificate Status Protocol – OCSP. Online Certificate Status Protocol is a key component of any Public Key Infrastructure, allowing for significantly faster certificate validation checks to be run in high-traffic environments.

RFC 3280

Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile. One of the Original Public Key Infrastructure Certificate standards, now superseded by RFC 5280.

RFC 4806

Online Certificate Status Protocol (OCSP) Extensions to IKEv2. This document adds the “OCSP Content” extension to the Internet Key Exchange Protocol, version 2.

RFC 5280

Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile. A key document in understanding the technical details of Public Key Infrastructure Certificates, as well as Certificate Revocation Lists. This document also shows an implementation of certificate path validation.

RFC 6125

Representation and Verification of Domain-Based Application Service Identity within Internet Public Key Infrastructure Using X.509 (PKIX) Certificates in the Context of Transport Layer Security (TLS). This document provides detailed information on the rules imposed on checking attributes within Certificates, including how Wildcard (“*”) characters are handled.