Metadata Sources for SGAF

1. SGAF Metadata: https://ds.sgaf.org.sg/distribution/metadata/sgaf-metadata.xml
   • Latest - contains all SGAF subcribers in the SGAF mesh


2. SGAF eduGAIN Metadata: https://ds.sgaf.org.sg/distribution/metadata/sgaf-edugain.xml
   • Contains all Identity Providers (IdPs) and Service Providers (SPs) from the global eduGAIN metadata


3. SGAF eduGAIN Export Metadata: https://ds.sgaf.org.sg/distribution/metadata/sgaf-edugain-export-metadata.xml
   • Contains SGAF subscribed IdPs to be published in eduGAIN's global metadata source.

Access the provided metadata via the HTTPS endpoints.

SGAF signs all provided metadata documents. Verification of metadata documents MUST be completed each time on retrieval by the Subscriber using the appropriate public key used to sign the metadata.

Below is the public key used for verifying the SGAF metadata. Verify that the public key you are using agrees with the following details:

Public Key:

https://ds.sgaf.org.sg/distribution/metadata/updated_metadata_cert.pem

$ openssl x509 -subject -dates -fingerprint -in updated_metadata_cert.pem

subject= /C=SG/L=Singapore/O=Singapore Advanced Research and Education Network/CN=SGAF Metadata
notBefore=Mar 17 07:29:18 2017 GMT
notAfter=Mar 15 07:29:18 2027 GMT
SHA1 Fingerprint=D9:F7:F5:5B:F4:D6:9A:BC:3F:34:18:91:B0:B7:1A:FA:B9:93:DE:F1