{"draft":"draft-ietf-pkix-pi-11","doc_id":"RFC4043","title":"Internet X.509 Public Key Infrastructure Permanent Identifier","authors":["D. Pinkas","T. Gindin"],"format":["ASCII","HTML"],"page_count":"15","pub_status":"PROPOSED STANDARD","status":"PROPOSED STANDARD","source":"Public-Key Infrastructure (X.509)","abstract":"This document defines a new form of name, called permanent identifier, that may be included in the subjectAltName extension of a public key certificate issued to an entity.\r\n\r\nThe permanent identifier is an optional feature that may be used by a CA to indicate that two or more certificates relate to the same entity, even if they contain different subject name (DNs) or\r\ndifferent names in the subjectAltName extension, or if the name or the affiliation of that entity stored in the subject or another name form in the subjectAltName extension has changed.\r\n\r\nThe subject name, carried in the subject field, is only unique for each subject entity certified by the one CA as defined by the issuer name field.  However, the new name form can carry a\r\nname that is unique for each subject entity certified by a CA.  [STANDARDS-TRACK]","pub_date":"April 2005","keywords":["subjectAltName extension","dn"],"obsoletes":[],"obsoleted_by":[],"updates":[],"updated_by":[],"see_also":[],"doi":"10.17487\/RFC4043","errata_url":"https:\/\/www.rfc-editor.org\/errata\/rfc4043"}