Last updated: 04-12-30 See http://support.microsoft.com/kb/287547/ for latest Microsoft OID...................................1.3.6.1.4.1.311 Authenticode....................................1.3.6.1.4.1.311.2 Software Publishing (with associated encoders/decoders) SPC_INDIRECT_DATA_OBJID 1.3.6.1.4.1.311.2.1.4 SPC_STATEMENT_TYPE_OBJID 1.3.6.1.4.1.311.2.1.11 SPC_SP_OPUS_INFO_OBJID 1.3.6.1.4.1.311.2.1.12 SPC_PE_IMAGE_DATA_OBJID 1.3.6.1.4.1.311.2.1.15 SPC_SP_AGENCY_INFO_OBJID 1.3.6.1.4.1.311.2.1.10 SPC_MINIMAL_CRITERIA_OBJID 1.3.6.1.4.1.311.2.1.26 SPC_FINANCIAL_CRITERIA_OBJID 1.3.6.1.4.1.311.2.1.27 SPC_LINK_OBJID 1.3.6.1.4.1.311.2.1.28 SPC_HASH_INFO_OBJID 1.3.6.1.4.1.311.2.1.29 SPC_SIPINFO_OBJID 1.3.6.1.4.1.311.2.1.30 Software Publishing (with NO associated encoders/decoders) SPC_CERT_EXTENSIONS_OBJID 1.3.6.1.4.1.311.2.1.14 SPC_RAW_FILE_DATA_OBJID 1.3.6.1.4.1.311.2.1.18 SPC_STRUCTURED_STORAGE_DATA_OBJID 1.3.6.1.4.1.311.2.1.19 SPC_JAVA_CLASS_DATA_OBJID 1.3.6.1.4.1.311.2.1.20 SPC_INDIVIDUAL_SP_KEY_PURPOSE_OBJID 1.3.6.1.4.1.311.2.1.21 SPC_COMMERCIAL_SP_KEY_PURPOSE_OBJID 1.3.6.1.4.1.311.2.1.22 SPC_CAB_DATA_OBJID 1.3.6.1.4.1.311.2.1.25 SPC_GLUE_RDN_OBJID 1.3.6.1.4.1.311.2.1.25 CTL for Software Publishers Trusted CAs 1.3.6.1.4.1.311.2.2 (sub-subtree is defined for Software Publishing trusted CAs) szOID_TRUSTED_CODESIGNING_CA_LIST 1.3.6.1.4.1.311.2.2.1 szOID_TRUSTED_CLIENT_AUTH_CA_LIST 1.3.6.1.4.1.311.2.2.2 szOID_TRUSTED_SERVER_AUTH_CA_LIST 1.3.6.1.4.1.311.2.2.3 Time Stamping...................................1.3.6.1.4.1.311.3 (with Associated encoder/decoders) SPC_TIME_STAMP_REQUEST_OBJID 1.3.6.1.4.1.311.3.2.1 Permissions.....................................1.3.6.1.4.1.311.4 Crypto 2.0......................................1.3.6.1.4.1.311.10 PKCS #7 ContentType Object Identifier for Certificate Trust List (CTL) szOID_CTL 1.3.6.1.4.1.311.10.1 Sorted CTL Extension szOID_SORTED_CTL 1.3.6.1.4.1.311.10.1.1 Next Update Location extension or attribute. Value is an encoded GeneralNames szOID_NEXT_UPDATE_LOCATION 1.3.6.1.4.1.311.10.2 Enhanced Key Usage (Purpose) Signer of CTLs szOID_KP_CTL_USAGE_SIGNING 1.3.6.1.4.1.311.10.3.1 Signer of TimeStamps szOID_KP_TIME_STAMP_SIGNING 1.3.6.1.4.1.311.10.3.2 Can use strong encryption in export environment szOID_SERVER_GATED_CRYPTO 1.3.6.1.4.1.311.10.3.3 szOID_SERIALIZED 1.3.6.1.4.1.311.10.3.3.1 Can use encrypted file systems (EFS) szOID_EFS_CRYPTO 1.3.6.1.4.1.311.10.3.4 szOID_EFS_RECOVERY 1.3.6.1.4.1.311.10.3.4.1 Can use Windows Hardware Compatible (WHQL) szOID_WHQL_CRYPTO 1.3.6.1.4.1.311.10.3.5 Signed by the NT5 build lab szOID_NT5_CRYPTO 1.3.6.1.4.1.311.10.3.6 Signed by and OEM of WHQL szOID_OEM_WHQL_CRYPTO 1.3.6.1.4.1.311.10.3.7 Signed by the Embedded NT szOID_EMBEDDED_NT_CRYPTO 1.3.6.1.4.1.311.10.3.8 Signer of a CTL containing trusted roots szOID_ROOT_LIST_SIGNER 1.3.6.1.4.1.311.10.3.9 Can sign cross-cert and subordinate CA requests with qualified subordination (name constraints, policy mapping, etc.) szOID_KP_QUALIFIED_SUBORDINATION 1.3.6.1.4.1.311.10.3.10 Can be used to encrypt/recover escrowed keys szOID_KP_KEY_RECOVERY 1.3.6.1.4.1.311.10.3.11 Signer of documents szOID_KP_DOCUMENT_SIGNING 1.3.6.1.4.1.311.10.3.12 Microsoft Attribute Object Identifiers szOID_YESNO_TRUST_ATTR 1.3.6.1.4.1.311.10.4.1 Microsoft Music szOID_DRM 1.3.6.1.4.1.311.10.5.1 Microsoft DRM EKU szOID_DRM_INDIVIDUALIZATION 1.3.6.1.4.1.311.10.5.2 Microsoft Licenses szOID_LICENSES 1.3.6.1.4.1.311.10.6.1 szOID_LICENSE_SERVER 1.3.6.1.4.1.311.10.6.2 Microsoft CERT_RDN attribute Object Identifiers szOID_MICROSOFT_RDN_PREFIX 1.3.6.1.4.1.311.10.7 Special RDN containing the KEY_ID. Its value type is CERT_RDN_OCTET_STRING. szOID_KEYID_RDN 1.3.6.1.4.1.311.10.7.1 Microsoft extension in a CTL to add or remove the certificates. The extension type is an INTEGER. 0 => add certificate, 1 => remove certificate szOID_REMOVE_CERTIFICATE 1.3.6.1.4.1.311.10.8.1 Microsoft certificate extension containing cross certificate distribution points. ASN.1 encoded as follows: CrossCertDistPoints ::= SEQUENCE { syncDeltaTime INTEGER (0..4294967295) OPTIONAL, crossCertDistPointNames CrossCertDistPointNames } --#public-- CrossCertDistPointNames ::= SEQUENCE OF GeneralNames szOID_CROSS_CERT_DIST_POINTS 1.3.6.1.4.1.311.10.9.1 Microsoft CMC OIDs 1.3.6.1.4.1.311.10.10 Similar to szOID_CMC_ADD_EXTENSIONS. Attributes replaces Extensions. szOID_CMC_ADD_ATTRIBUTES 1.3.6.1.4.1.311.10.10.1 Microsoft certificate property OIDs 1.3.6.1.4.1.311.10.11 The OID component following the prefix contains the PROP_ID (decimal) szOID_CERT_PROP_ID_PREFIX 1.3.6.1.4.1.311.10.11. CryptUI 1.3.6.1.4.1.311.10.12 szOID_ANY_APPLICATION_POLICY 1.3.6.1.4.1.311.10.12.1 Catalog.........................................1.3.6.1.4.1.311.12 szOID_CATALOG_LIST 1.3.6.1.4.1.311.12.1.1 szOID_CATALOG_LIST_MEMBER 1.3.6.1.4.1.311.12.1.2 CAT_NAMEVALUE_OBJID 1.3.6.1.4.1.311.12.2.1 CAT_MEMBERINFO_OBJID 1.3.6.1.4.1.311.12.2.2 Microsoft PKCS10 OIDs...........................1.3.6.1.4.1.311.13 szOID_RENEWAL_CERTIFICATE 1.3.6.1.4.1.311.13.1 szOID_ENROLLMENT_NAME_VALUE_PAIR 1.3.6.1.4.1.311.13.2.1 szOID_ENROLLMENT_CSP_PROVIDER 1.3.6.1.4.1.311.13.2.2 Microsoft Java..................................1.3.6.1.4.1.311.15 Microsoft Outlook/Exchange......................1.3.6.1.4.1.311.16 Outlook Express 1.3.6.1.4.1.311.16.4 Used by OL/OLEXP to identify which certificate signed the PKCS # 7 message Microsoft PKCS12 attributes.....................1.3.6.1.4.1.311.17 szOID_LOCAL_MACHINE_KEYSET 1.3.6.1.4.1.311.17.1 Microsoft Hydra.................................1.3.6.1.4.1.311.18 Microsoft ISPU Test.............................1.3.6.1.4.1.311.19 Microsoft Enrollment Infrastructure..............1.3.6.1.4.1.311.20 szOID_AUTO_ENROLL_CTL_USAGE 1.3.6.1.4.1.311.20.1 Extension contain certificate type szOID_ENROLL_CERTTYPE_EXTENSION 1.3.6.1.4.1.311.20.2 szOID_ENROLLMENT_AGENT 1.3.6.1.4.1.311.20.2.1 szOID_KP_SMARTCARD_LOGON 1.3.6.1.4.1.311.20.2.2 szOID_NT_PRINCIPAL_NAME 1.3.6.1.4.1.311.20.2.3 szOID_CERT_MANIFOLD 1.3.6.1.4.1.311.20.3 Microsoft CertSrv Infrastructure.................1.3.6.1.4.1.311.21 CertSrv (with associated encoders/decoders) szOID_CERTSRV_CA_VERSION 1.3.6.1.4.1.311.21.1 Microsoft Directory Service.....................1.3.6.1.4.1.311.25 szOID_NTDS_REPLICATION 1.3.6.1.4.1.311.25.1 IIS.............................................1.3.6.1.4.1.311.30 Windows updates and service packs...............1.3.6.1.4.1.311.31 szOID_PRODUCT_UPDATE 1.3.6.1.4.1.311.31.1 Fonts...........................................1.3.6.1.4.1.311.40 Microsoft Licensing and Registration............1.3.6.1.4.1.311.41 Microsoft Corporate PKI (ITG)...................1.3.6.1.4.1.311.42 CAPICOM.........................................1.3.6.1.4.1.311.88 szOID_CAPICOM 1.3.6.1.4.1.311.88 Reserved for CAPICOM. szOID_CAPICOM_VERSION 1.3.6.1.4.1.311.88.1 CAPICOM version szOID_CAPICOM_ATTRIBUTE 1.3.6.1.4.1.311.88.2 CAPICOM attribute szOID_CAPICOM_DOCUMENT_NAME 1.3.6.1.4.1.311.88.2.1 Document type attribute szOID_CAPICOM_DOCUMENT_DESCRIPTION 1.3.6.1.4.1.311.88.2.2 Document description attribute szOID_CAPICOM_ENCRYPTED_DATA 1.3.6.1.4.1.311.88.3 CAPICOM encrypted data message. szOID_CAPICOM_ENCRYPTED_CONTENT 1.3.6.1.4.1.311.88.3.1 CAPICOM content of encrypted data.