dotnet-core/release-notes/5.0/api-diff/netstandard2.1/5.0_System.Security.Cryptography.X509Certificates.md

# System.Security.Cryptography.X509Certificates

``` diff
 namespace System.Security.Cryptography.X509Certificates {
     public sealed class CertificateRequest {
+        public X509Certificate2 Create(X500DistinguishedName issuerName, X509SignatureGenerator generator, DateTimeOffset notBefore, DateTimeOffset notAfter, ReadOnlySpan<byte> serialNumber);
+        public X509Certificate2 Create(X509Certificate2 issuerCertificate, DateTimeOffset notBefore, DateTimeOffset notAfter, ReadOnlySpan<byte> serialNumber);
     }
     public sealed class X500DistinguishedName : AsnEncodedData {
+        public X500DistinguishedName(ReadOnlySpan<byte> encodedDistinguishedName);
     }
     public class X509Certificate2 : X509Certificate {
+        public X509Certificate2(ReadOnlySpan<byte> rawData);
+        public X509Certificate2(ReadOnlySpan<byte> rawData, ReadOnlySpan<char> password, X509KeyStorageFlags keyStorageFlags = X509KeyStorageFlags.DefaultKeySet);
+        public X509Certificate2(string fileName, ReadOnlySpan<char> password, X509KeyStorageFlags keyStorageFlags = X509KeyStorageFlags.DefaultKeySet);
+        public static X509Certificate2 CreateFromEncryptedPem(ReadOnlySpan<char> certPem, ReadOnlySpan<char> keyPem, ReadOnlySpan<char> password);
+        public static X509Certificate2 CreateFromEncryptedPemFile(string certPemFilePath, ReadOnlySpan<char> password, string keyPemFilePath = null);
+        public static X509Certificate2 CreateFromPem(ReadOnlySpan<char> certPem, ReadOnlySpan<char> keyPem);
+        public static X509Certificate2 CreateFromPemFile(string certPemFilePath, string keyPemFilePath = null);
+        public static X509ContentType GetCertContentType(ReadOnlySpan<byte> rawData);
     }
     public class X509Certificate2Collection : X509CertificateCollection {
-        public void Import(byte[] rawData, string password, X509KeyStorageFlags keyStorageFlags);
+        public void Import(byte[] rawData, string password, X509KeyStorageFlags keyStorageFlags = X509KeyStorageFlags.DefaultKeySet);
+        public void Import(ReadOnlySpan<byte> rawData);
+        public void Import(ReadOnlySpan<byte> rawData, ReadOnlySpan<char> password, X509KeyStorageFlags keyStorageFlags = X509KeyStorageFlags.DefaultKeySet);
+        public void Import(ReadOnlySpan<byte> rawData, string password, X509KeyStorageFlags keyStorageFlags = X509KeyStorageFlags.DefaultKeySet);
+        public void Import(string fileName, ReadOnlySpan<char> password, X509KeyStorageFlags keyStorageFlags = X509KeyStorageFlags.DefaultKeySet);
-        public void Import(string fileName, string password, X509KeyStorageFlags keyStorageFlags);
+        public void Import(string fileName, string password, X509KeyStorageFlags keyStorageFlags = X509KeyStorageFlags.DefaultKeySet);
+        public void ImportFromPem(ReadOnlySpan<char> certPem);
+        public void ImportFromPemFile(string certPemFilePath);
     }
     public sealed class X509ChainPolicy {
+        public X509Certificate2Collection CustomTrustStore { get; }
+        public bool DisableCertificateDownloads { get; set; }
+        public X509ChainTrustMode TrustMode { get; set; }
     }
+    public enum X509ChainTrustMode {
+        CustomRootTrust = 1,
+        System = 0,
+    }
     public class X509Extension : AsnEncodedData {
+        public X509Extension(Oid oid, ReadOnlySpan<byte> rawData, bool critical);
+        public X509Extension(string oid, ReadOnlySpan<byte> rawData, bool critical);
     }
     public sealed class X509SubjectKeyIdentifierExtension : X509Extension {
+        public X509SubjectKeyIdentifierExtension(ReadOnlySpan<byte> subjectKeyIdentifier, bool critical);
     }
 }
```
Api diff between net5.0 and netcoreapp3.1 & netstandard2.1 (#5610) * .net shared framework changes * standalone net 5.0 packages * netstanard2.1 diff * improving the directory structure * adding a readme file * aspnetcore shared framework changes * remove wrong process type change diff * adding comments about apis being to inbox from package 2020-11-18 19:40:01 +01:00			`# System.Security.Cryptography.X509Certificates`

			``` diff
			`namespace System.Security.Cryptography.X509Certificates {`
			`public sealed class CertificateRequest {`
			`+ public X509Certificate2 Create(X500DistinguishedName issuerName, X509SignatureGenerator generator, DateTimeOffset notBefore, DateTimeOffset notAfter, ReadOnlySpan<byte> serialNumber);`
			`+ public X509Certificate2 Create(X509Certificate2 issuerCertificate, DateTimeOffset notBefore, DateTimeOffset notAfter, ReadOnlySpan<byte> serialNumber);`
			`}`
			`public sealed class X500DistinguishedName : AsnEncodedData {`
			`+ public X500DistinguishedName(ReadOnlySpan<byte> encodedDistinguishedName);`
			`}`
			`public class X509Certificate2 : X509Certificate {`
			`+ public X509Certificate2(ReadOnlySpan<byte> rawData);`
			`+ public X509Certificate2(ReadOnlySpan<byte> rawData, ReadOnlySpan<char> password, X509KeyStorageFlags keyStorageFlags = X509KeyStorageFlags.DefaultKeySet);`
			`+ public X509Certificate2(string fileName, ReadOnlySpan<char> password, X509KeyStorageFlags keyStorageFlags = X509KeyStorageFlags.DefaultKeySet);`
			`+ public static X509Certificate2 CreateFromEncryptedPem(ReadOnlySpan<char> certPem, ReadOnlySpan<char> keyPem, ReadOnlySpan<char> password);`
			`+ public static X509Certificate2 CreateFromEncryptedPemFile(string certPemFilePath, ReadOnlySpan<char> password, string keyPemFilePath = null);`
			`+ public static X509Certificate2 CreateFromPem(ReadOnlySpan<char> certPem, ReadOnlySpan<char> keyPem);`
			`+ public static X509Certificate2 CreateFromPemFile(string certPemFilePath, string keyPemFilePath = null);`
			`+ public static X509ContentType GetCertContentType(ReadOnlySpan<byte> rawData);`
			`}`
			`public class X509Certificate2Collection : X509CertificateCollection {`
			`- public void Import(byte[] rawData, string password, X509KeyStorageFlags keyStorageFlags);`
			`+ public void Import(byte[] rawData, string password, X509KeyStorageFlags keyStorageFlags = X509KeyStorageFlags.DefaultKeySet);`
			`+ public void Import(ReadOnlySpan<byte> rawData);`
			`+ public void Import(ReadOnlySpan<byte> rawData, ReadOnlySpan<char> password, X509KeyStorageFlags keyStorageFlags = X509KeyStorageFlags.DefaultKeySet);`
			`+ public void Import(ReadOnlySpan<byte> rawData, string password, X509KeyStorageFlags keyStorageFlags = X509KeyStorageFlags.DefaultKeySet);`
			`+ public void Import(string fileName, ReadOnlySpan<char> password, X509KeyStorageFlags keyStorageFlags = X509KeyStorageFlags.DefaultKeySet);`
			`- public void Import(string fileName, string password, X509KeyStorageFlags keyStorageFlags);`
			`+ public void Import(string fileName, string password, X509KeyStorageFlags keyStorageFlags = X509KeyStorageFlags.DefaultKeySet);`
			`+ public void ImportFromPem(ReadOnlySpan<char> certPem);`
			`+ public void ImportFromPemFile(string certPemFilePath);`
			`}`
			`public sealed class X509ChainPolicy {`
			`+ public X509Certificate2Collection CustomTrustStore { get; }`
			`+ public bool DisableCertificateDownloads { get; set; }`
			`+ public X509ChainTrustMode TrustMode { get; set; }`
			`}`
			`+ public enum X509ChainTrustMode {`
			`+ CustomRootTrust = 1,`
			`+ System = 0,`
			`+ }`
			`public class X509Extension : AsnEncodedData {`
			`+ public X509Extension(Oid oid, ReadOnlySpan<byte> rawData, bool critical);`
			`+ public X509Extension(string oid, ReadOnlySpan<byte> rawData, bool critical);`
			`}`
			`public sealed class X509SubjectKeyIdentifierExtension : X509Extension {`
			`+ public X509SubjectKeyIdentifierExtension(ReadOnlySpan<byte> subjectKeyIdentifier, bool critical);`
			`}`
			`}`
			```