'signingCert'=>['//*[local-name() = "KeyDescriptor" and (not(@use) or @use="signing")]//*[local-name() = "X509Certificate"]'],
'encryptionCert'=>['//*[local-name() = "KeyDescriptor" and (not(@use) or @use="encryption")]//*[local-name() = "X509Certificate"]'],
'spAdminContact'=>['//*[local-name() = "ContactPerson" and (@contactType="technical" or @contactType="administrative")]/*[local-name() = "EmailAddress"]'],
'spSupportContact'=>['//*[local-name() = "ContactPerson" and (@contactType="support")]/*[local-name() = "EmailAddress"]'],