<?xml version="1.0" encoding="UTF-8"?>
<md:EntityDescriptor xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata" entityID="https://www.openconext.org/simplesaml/module.php/saml/sp/metadata.php/default-sp">
  <md:Extensions>
    <mdrpi:RegistrationInfo xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi" registrationAuthority="http://www.surfconext.nl/" registrationInstant="2015-03-27T09:48:00Z">
      <mdrpi:RegistrationPolicy xml:lang="en">https://wiki.surfnet.nl/display/eduGAIN/EduGAIN</mdrpi:RegistrationPolicy>
    </mdrpi:RegistrationInfo>
  </md:Extensions>
  <md:SPSSODescriptor protocolSupportEnumeration="urn:oasis:names:tc:SAML:2.0:protocol">
    <md:KeyDescriptor use="signing">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:KeyDescriptor use="encryption">
      <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
        <ds:X509Data>
          <ds:X509Certificate>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</ds:X509Certificate>
        </ds:X509Data>
      </ds:KeyInfo>
    </md:KeyDescriptor>
    <md:NameIDFormat>urn:oasis:names:tc:SAML:2.0:nameid-format:persistent</md:NameIDFormat>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-Artifact" Location="https://www.openconext.org/simplesaml/module.php/saml/sp/saml2-acs.php/default-sp" index="2"/>
    <md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location="https://www.openconext.org/simplesaml/module.php/saml/sp/saml2-acs.php/default-sp" index="0"/>
    <md:AttributeConsumingService index="0">
      <md:ServiceName xml:lang="nl">OpenConext Community</md:ServiceName>
      <md:ServiceName xml:lang="en">OpenConext Community</md:ServiceName>
      <md:ServiceDescription xml:lang="nl">OpenConext Community</md:ServiceDescription>
      <md:ServiceDescription xml:lang="en">OpenConext Community</md:ServiceDescription>
      <md:RequestedAttribute Name="urn:mace:dir:attribute-def:eduPersonPrincipalName" isRequired="true"/>
      <md:RequestedAttribute Name="urn:mace:dir:attribute-def:displayName" isRequired="true"/>
      <md:RequestedAttribute Name="urn:mace:dir:attribute-def:mail" isRequired="true"/>
      <md:RequestedAttribute Name="urn:mace:dir:attribute-def:uid" isRequired="false"/>
    </md:AttributeConsumingService>
  </md:SPSSODescriptor>
  <md:Organization>
    <md:OrganizationName xml:lang="en">OpenConext</md:OrganizationName>
    <md:OrganizationDisplayName xml:lang="en">OpenConext</md:OrganizationDisplayName>
    <md:OrganizationURL xml:lang="en">http://www.openconext.org</md:OrganizationURL>
  </md:Organization>
  <md:ContactPerson contactType="support">
    <md:GivenName>Frans</md:GivenName>
    <md:SurName>Ward</md:SurName>
    <md:EmailAddress>Frans.Ward@surfnet.nl</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson contactType="administrative">
    <md:GivenName>Frans</md:GivenName>
    <md:SurName>Ward</md:SurName>
    <md:EmailAddress>Frans.Ward@surfnet.nl</md:EmailAddress>
  </md:ContactPerson>
  <md:ContactPerson contactType="technical">
    <md:GivenName>Frans</md:GivenName>
    <md:SurName>Ward</md:SurName>
    <md:EmailAddress>Frans.Ward@surfnet.nl</md:EmailAddress>
  </md:ContactPerson>
</md:EntityDescriptor>