--- title: "Get a scan inventory object" slug: "get-a-scan-inventory-object" updated: 2025-10-18T04:50:53Z published: 2025-10-18T04:50:58Z canonical: "support.fortanix.com/get-a-scan-inventory-object" --- > ## Documentation Index > Fetch the complete documentation index at: https://support.fortanix.com/llms.txt > Use this file to discover all available pages before exploring further. # Get a scan inventory object Get/api/v1/discovery/scans/{scan_id}/scan_inventory_objects/{scan_inventory_object_id} Get a scan inventory object SecurityOAuth OAuth 2.0 client credential flow, see [https://datatracker.ietf.org/doc/html/rfc6749#section-4.4](https://datatracker.ietf.org/doc/html/rfc6749#section-4.4). FlowClient Credentials Token URLhttps://api.armor.fortanix.com/api/v1/iam/session/oauth2/token Path parametersscan_idstring (uuid) Required scan_inventory_object_idstring (uuid) Required Responses2XX Success result Expand Allobject acct_idstring (uuid) detailsOneOfobjectobject$typestring Valid values[ "aws" ] accountobject detailsobject namestring | null idstring arnstring detailsOneOfobjectobject$typestring Valid values[ "acm" ] analysisobject is_expiredboolean is_sharedboolean key_algo_crypto_policy_complianceobject is_compliantboolean violation_reasonstring | null overly_permissive_usage_violationboolean signature_crypto_policy_complianceobject is_compliantboolean violation_reasonstring | null certificate_arnstring created_atstring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z domain_namestring extended_key_usages Array of object (DiscoveryAcmCertificateExtendedKeyUsage) | null object namestring Valid values[ "any", "code_signing", "custom", "email_protection", "ipsec_end_system", "ipsec_tunnel", "ipsec_user", "none", "ocsp_signing", "time_stamping", "tls_web_server_authentication", "tls_web_client_authentication", "unknown" ] object_identifierstring | null issuerstring key_algorithmstring Valid values[ "rsa2048", "rsa3072", "rsa4096", "unknown" ] not_valid_afterstring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z not_valid_beforestring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z renewal_eligibilitystring Valid values[ "ineligible", "eligible", "unknown" ] serialstring signature_algorithmstring Valid values[ "sha256_with_rsa", "sha512_with_rsa", "unknown" ] statusstring Valid values[ "expired", "pending", "issued", "failed", "inactive", "revoked", "validation_timed_out", "unknown" ] subject_alternative_names Array of string | null string used_by_services Array of string string objectobject$typestring Valid values[ "ebs" ] analysisobject encrypted_with_expired_keyboolean | null encrypted_with_noncompliant_keyboolean encrypted_with_overly_permissive_management_keyboolean | null encrypted_with_overly_permissive_usage_keyboolean | null encrypted_with_quantum_vulnerable_keyboolean | null encrypted_with_shared_keyboolean | null encryption_statusstring Valid values[ "unencrypted", "encrypted_with_csp_generated_key", "encrypted_with_platform_managed_key", "encrypted_with_customer_managed_key" ] key_availabilitystring This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown Valid values[ "available", "soft_deleted", "purged", "cross_account", "unknown" ] availability_zonestring The region this volume will be available kms_key_idstring | null The arn of the key in KMS that encrypts this drive volume_idstring | null The ARN of the volume volume_sizeinteger (int32) | null The storage limit (in GB) of the volume volume_statestring Enumeration of the states that a volume may occupy. This enum will default to the `Other` variant when a new variant is found as the SDK from AWS marks their enum as "non-exhaustive" Valid values[ "available", "creating", "deleted", "deleting", "error", "in_use", "other" ] volume_typestring Enumeration of the various types of volumes supported. This enum will default to the `Other` variant when a new variant is found as the SDK from AWS marks their enum as "non-exhaustive" Valid values[ "gp2", "gp3", "io1", "io2", "sc1", "st1", "standard", "other" ] objectobject$typestring Valid values[ "kms" ] analysisobject crypto_policy_complianceobject is_compliantboolean violation_reasonstring | null is_cross_account_keyboolean | null is_sharedboolean overly_permissive_violationsobject management_violations Array of object (DiscoveryKeyPolicyId) OneOfobjectobject$typestring Valid values[ "aws_key_policy_sid" ] sidstring objectobject$typestring Valid values[ "aws_grant_id" ] idstring usage_violations Array of object (DiscoveryKeyPolicyId) OneOfobjectobject$typestring Valid values[ "aws_key_policy_sid" ] sidstring objectobject$typestring Valid values[ "aws_grant_id" ] idstring usage_detailsobject encryptobject service_countinteger usages Array of string (DiscoveryKeyUsage) | null string Valid values[ "encrypt", "unused" ] external_key_stores Array of object (DiscoveryAwsKmsExternalKeyStore) | null object idstring namestring key_aliases Array of string string key_creation_datestring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z key_idstring | null key_managerstring Valid values[ "aws", "customer", "other" ] key_originstring Valid values[ "kms", "imported", "cloud_hsm", "xks", "fortanix", "other" ] key_rotation_statusOneOfobjectobject$typestring Valid values[ "unknown" ] objectobject$typestring Valid values[ "enabled" ] next_rotation_datestring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z rotation_periodinteger Minimum0Maximum4294967295 objectobject$typestring Valid values[ "disabled" ] key_specstring Valid values[ "rsa2048", "rsa3072", "rsa4096", "ecc_nist_p256", "ecc_nist_p384", "ecc_nist_p521", "ecc_secg_p256k1", "symmetric_default", "hmac224", "hmac256", "hmac384", "hmac512", "sm2", "other" ] key_statestring Valid values[ "creating", "enabled", "disabled", "pending_deletion", "pending_import", "pending_replica_deletion", "unavailable", "updating", "other" ] key_tagsobject | null property*string additionalProperties key_usagestring Valid values[ "sign_verify", "encrypt_decrypt", "generate_verify_mac", "other" ] key_valid_tostring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z last_rotated_atstring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z source_scan_inventory_objectobject idstring (uuid) scan_idstring (uuid) objectobject$typestring Valid values[ "s3" ] analysisobject encrypted_with_expired_keyboolean | null encrypted_with_noncompliant_keyboolean encrypted_with_overly_permissive_management_keyboolean | null encrypted_with_overly_permissive_usage_keyboolean | null encrypted_with_quantum_vulnerable_keyboolean | null encrypted_with_shared_keyboolean | null encryption_statusstring Valid values[ "unencrypted", "encrypted_with_csp_generated_key", "encrypted_with_platform_managed_key", "encrypted_with_customer_managed_key" ] key_availabilitystring This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown Valid values[ "available", "soft_deleted", "purged", "cross_account", "unknown" ] namestring server_side_encryption_rules Array of object (DiscoveryAwsServerSideEncryptionRule) object bucket_key_enabledboolean default_sseobject kms_master_keystring | null sse_algorithmstring Valid values[ "aes256", "kms", "aws:kms_dsse", "other" ] objectobject$typestring Valid values[ "rds" ] analysisobject encrypted_with_expired_keyboolean | null encrypted_with_noncompliant_keyboolean encrypted_with_overly_permissive_management_keyboolean | null encrypted_with_overly_permissive_usage_keyboolean | null encrypted_with_quantum_vulnerable_keyboolean | null encrypted_with_shared_keyboolean | null encryption_statusstring Valid values[ "unencrypted", "encrypted_with_csp_generated_key", "encrypted_with_platform_managed_key", "encrypted_with_customer_managed_key" ] key_availabilitystring This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown Valid values[ "available", "soft_deleted", "purged", "cross_account", "unknown" ] enginestring | null engine_versionstring | null identifierstring | null kms_key_idstring | null objectobject$typestring Valid values[ "dynamo_db" ] analysisobject encrypted_with_expired_keyboolean | null encrypted_with_noncompliant_keyboolean encrypted_with_overly_permissive_management_keyboolean | null encrypted_with_overly_permissive_usage_keyboolean | null encrypted_with_quantum_vulnerable_keyboolean | null encrypted_with_shared_keyboolean | null encryption_statusstring Valid values[ "unencrypted", "encrypted_with_csp_generated_key", "encrypted_with_platform_managed_key", "encrypted_with_customer_managed_key" ] key_availabilitystring This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown Valid values[ "available", "soft_deleted", "purged", "cross_account", "unknown" ] identifierstring | null kms_key_idstring | null objectobject$typestring Valid values[ "eks" ] analysisobject encrypted_with_expired_keyboolean | null encrypted_with_noncompliant_keyboolean encrypted_with_overly_permissive_management_keyboolean | null encrypted_with_overly_permissive_usage_keyboolean | null encrypted_with_quantum_vulnerable_keyboolean | null encrypted_with_shared_keyboolean | null encryption_statusstring Valid values[ "unencrypted", "encrypted_with_csp_generated_key", "encrypted_with_platform_managed_key", "encrypted_with_customer_managed_key" ] key_availabilitystring This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown Valid values[ "available", "soft_deleted", "purged", "cross_account", "unknown" ] encryption_statusstring Valid values[ "encrypted", "unencrypted" ] kms_key_idstring | null namestring statusstring Valid values[ "active", "creating", "deleting", "failed", "pending", "updating", "unknown" ] objectobject$typestring Valid values[ "efs" ] analysisobject encrypted_with_expired_keyboolean | null encrypted_with_noncompliant_keyboolean encrypted_with_overly_permissive_management_keyboolean | null encrypted_with_overly_permissive_usage_keyboolean | null encrypted_with_quantum_vulnerable_keyboolean | null encrypted_with_shared_keyboolean | null encryption_statusstring Valid values[ "unencrypted", "encrypted_with_csp_generated_key", "encrypted_with_platform_managed_key", "encrypted_with_customer_managed_key" ] key_availabilitystring This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown Valid values[ "available", "soft_deleted", "purged", "cross_account", "unknown" ] file_system_idstring kms_key_idstring | null life_cycle_statestring Valid values[ "available", "creating", "deleted", "deleting", "error", "updating", "unknown" ] sizeinteger (int64) | null objectobject$typestring Valid values[ "redshift" ] analysisobject encrypted_with_expired_keyboolean | null encrypted_with_noncompliant_keyboolean encrypted_with_overly_permissive_management_keyboolean encrypted_with_overly_permissive_usage_keyboolean encrypted_with_quantum_vulnerable_keyboolean | null encrypted_with_shared_keyboolean encryption_statusstring Valid values[ "unencrypted", "encrypted_with_csp_generated_key", "encrypted_with_platform_managed_key", "encrypted_with_customer_managed_key" ] key_availabilitystring This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown Valid values[ "available", "soft_deleted", "purged", "cross_account", "unknown" ] encryption_statusstring Valid values[ "encrypted", "unencrypted" ] kms_key_idstring | null namestring statusstring Valid values[ "available", "available_prep_for_resize", "available_resize_cleanup", "canceling_resize", "creating", "deleting", "final_snapshot", "hardware_failure", "incompatible_hsm", "incompatible_network", "incompatible_parameters", "incompatible_restore", "modifying", "paused", "rebooting", "renaming", "resizing", "rotating_keys", "storage_full", "updating_hsm", "pausing", "resuming", "restoring", "unknown" ] regionstring Reference: [https://docs.aws.amazon.com/general/latest/gr/rande.html](https://docs.aws.amazon.com/general/latest/gr/rande.html) Valid values[ "us-east-2", "us-east-1", "us-west-1", "us-west-2", "af-south-1", "ap-east-1", "ap-south-2", "ap-southeast-3", "ap-southeast-4", "ap-south-1", "ap-northeast-3", "ap-northeast-2", "ap-southeast-1", "ap-southeast-2", "ap-northeast-1", "ca-central-1", "ca-west-1", "eu-central-1", "eu-west-1", "eu-west-2", "eu-south-1", "eu-west-3", "eu-south-2", "eu-north-1", "eu-central-2", "il-central-1", "me-south-1", "me-central-1", "sa-east-1", "us-gov-east-1", "us-gov-west-1" ] objectobject$typestring Valid values[ "azure" ] detailsOneOfobject$typestring Valid values[ "database" ] OneOfobjectobject$db_variantstring Valid values[ "sql_single_server" ] propertiesobject deployment_namestring encryption_detailsobject analysisobject encrypted_with_expired_keyboolean | null encrypted_with_exportable_keyboolean | null encrypted_with_noncompliant_keyboolean encrypted_with_overly_permissive_management_keyboolean | null encrypted_with_overly_permissive_usage_keyboolean | null encrypted_with_quantum_vulnerable_keyboolean | null encrypted_with_shared_keyboolean | null key_availabilitystring This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown Valid values[ "available", "soft_deleted", "purged", "cross_account", "unknown" ] key_source Specifier for optional CMK Keys. OneOfobjectobject$typestring Valid values[ "deployment_level_customer_managed_key" ] key_idstring objectobject$typestring Valid values[ "deployment_level_microsoft_managed_key" ] objectobject$typestring Valid values[ "database_level_customer_managed_key" ] key_idstring inner_databases_properties Array of object (DiscoveryAzureDatabaseProperties) object database_namestring is_tde_enabledboolean If true, encryption is in place either with a CMK (customer managed key) or MMK (microsoft managed key). tierstring The service tiers for SQL Single Server. Valid values[ "server", "serverless" ] objectobject$db_variantstring Valid values[ "sql_managed_instance" ] propertiesobject deployment_namestring encryption_detailsobject analysisobject encrypted_with_expired_keyboolean | null encrypted_with_exportable_keyboolean | null encrypted_with_noncompliant_keyboolean encrypted_with_overly_permissive_management_keyboolean | null encrypted_with_overly_permissive_usage_keyboolean | null encrypted_with_quantum_vulnerable_keyboolean | null encrypted_with_shared_keyboolean | null key_availabilitystring This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown Valid values[ "available", "soft_deleted", "purged", "cross_account", "unknown" ] key_source Specifier for optional CMK Keys. OneOfobjectobject$typestring Valid values[ "deployment_level_customer_managed_key" ] key_idstring objectobject$typestring Valid values[ "deployment_level_microsoft_managed_key" ] objectobject$typestring Valid values[ "database_level_customer_managed_key" ] key_idstring inner_databases_properties Array of object (DiscoveryAzureDatabaseProperties) object database_namestring is_tde_enabledboolean If true, encryption is in place either with a CMK (customer managed key) or MMK (microsoft managed key). objectobject$db_variantstring Valid values[ "sql_managed_instance_pool" ] propertiesobject deployment_namestring encryption_detailsobject analysisobject encrypted_with_expired_keyboolean | null encrypted_with_exportable_keyboolean | null encrypted_with_noncompliant_keyboolean encrypted_with_overly_permissive_management_keyboolean | null encrypted_with_overly_permissive_usage_keyboolean | null encrypted_with_quantum_vulnerable_keyboolean | null encrypted_with_shared_keyboolean | null key_availabilitystring This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown Valid values[ "available", "soft_deleted", "purged", "cross_account", "unknown" ] key_source Specifier for optional CMK Keys. OneOfobjectobject$typestring Valid values[ "deployment_level_customer_managed_key" ] key_idstring objectobject$typestring Valid values[ "deployment_level_microsoft_managed_key" ] objectobject$typestring Valid values[ "database_level_customer_managed_key" ] key_idstring inner_databases_properties Array of object (DiscoveryAzureDatabaseProperties) object database_namestring is_tde_enabledboolean If true, encryption is in place either with a CMK (customer managed key) or MMK (microsoft managed key). objectobject$db_variantstring Valid values[ "cosmos_db" ] apistring The API a Cosmos databases exposes to applications. Some possible values currently available in Azure are "Sql", "MongoDB", "Cassandra", ... This may be directly exposed in the frontend. propertiesobject deployment_namestring encryption_detailsobject analysisobject encrypted_with_expired_keyboolean | null encrypted_with_exportable_keyboolean | null encrypted_with_noncompliant_keyboolean encrypted_with_overly_permissive_management_keyboolean | null encrypted_with_overly_permissive_usage_keyboolean | null encrypted_with_quantum_vulnerable_keyboolean | null encrypted_with_shared_keyboolean | null key_availabilitystring This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown Valid values[ "available", "soft_deleted", "purged", "cross_account", "unknown" ] key_source Specifier for optional CMK Keys. OneOfobjectobject$typestring Valid values[ "deployment_level_customer_managed_key" ] key_idstring objectobject$typestring Valid values[ "deployment_level_microsoft_managed_key" ] objectobject$typestring Valid values[ "database_level_customer_managed_key" ] key_idstring inner_databases_properties Array of object (DiscoveryAzureDatabaseProperties) object database_namestring is_tde_enabledboolean If true, encryption is in place either with a CMK (customer managed key) or MMK (microsoft managed key). objectobject$typestring Valid values[ "kv_key_version" ] analysisobject crypto_policy_complianceobject is_compliantboolean Represents if the crypto policy is compliant for the key. violation_reasonstring | null Represents the violation reason if the non-compliant against the crypto policy, otherwise `None`. is_sharedboolean Defaults to `false`. Will be `true` only if underlying key is used to encrypt multiple services. overly_permissive_key_violationsobject management_violations Array of object (DiscoveryAzureKvKeyPolicyInfo) object principal_idstring role_assignment_idstring role_definition_idstring usage_violations Array of object (DiscoveryAzureKvKeyPolicyInfo) object principal_idstring role_assignment_idstring role_definition_idstring usage_detailsobject encryptobject service_countinteger usages Array of string (DiscoveryKeyUsage) | null string Valid values[ "encrypt", "unused" ] is_current_versionboolean True if this is the latest key version, False otherwise. is_key_managedboolean True if the key version's lifetime is managed by key vault, False otherwise. key_attributesobject activation_datestring The timestamp when the key will be activated. None, if the activation date is not set for the key. Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z created_atstring The timestamp of creation of the key. Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z expiry_datestring The timestamp when the key will expire. None, if the expiry date is not scheduled for the key. Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z is_enabledboolean Represents true if the key is enabled, false otherwise. is_exportableboolean Represents true if the key is exportable, false otherwise. key_availabilityOneOfobjectobject$typestring Valid values[ "available" ] objectobject$typestring Valid values[ "soft_deleted" ] deleted_onstring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z scheduled_purge_onstring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z recoverable_daysinteger Soft Delete data retention days. Value should be >=7 and <=90 when soft delete is enabled, otherwise 0. Minimum0Maximum4294967295 recovery_levelstring Valid values[ "customized_recoverable", "customized_recoverable_and_protected_subscription", "customized_recoverable_and_purgeable", "purgeable", "recoverable", "recoverable_and_protected_subscription", "recoverable_and_purgeable", "unknown" ] updated_atstring The timestamp when the key was last updated. By default, it will always have the key creation timestamp as the last updated time. Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z key_namestring The name associated with the key version. key_ops Array of string (DiscoveryAzureKvKeyOperation) Allowed key operations on the key version. string Valid values[ "encrypt", "decrypt", "sign", "verify", "wrap_key", "unwrap_key", "import" ] key_rotation_datestring Returns the date when the key will be rotated. None, when the auto key rotation is not enabled for the key. Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z key_sourcestring Valid values[ "kv", "fortanix", "other" ] key_typestring Valid values[ "rsa2048", "rsa3072", "rsa4096", "rsa_hsm2048", "rsa_hsm3072", "rsa_hsm4096", "ecc_nist_p256", "ecc_nist_p384", "ecc_nist_p521", "ecc_secg_p256k1", "ecc_nist_hsm_p256", "ecc_nist_hsm_p384", "ecc_nist_hsm_p521", "ecc_secg_hsm_p256k1", "oct", "oct_hsm", "unknown" ] key_vault_access_tierstring Valid values[ "standard", "premium" ] key_vault_namestring Represents the Azure Key Vault Name. key_vault_uristring Represents the Azure key vault URI. key_versionstring The key version of the scanned key. source_scan_inventory_objectobject idstring (uuid) scan_idstring (uuid) tagsobject The tags associated with the key version. property*string additionalProperties objectobject$typestring Valid values[ "storage_account" ] analysisobject encrypted_with_expired_keyboolean | null encrypted_with_exportable_keyboolean | null encrypted_with_noncompliant_keyboolean encrypted_with_overly_permissive_management_keyboolean | null encrypted_with_overly_permissive_usage_keyboolean | null encrypted_with_quantum_vulnerable_keyboolean | null encrypted_with_shared_keyboolean | null key_availabilitystring This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown Valid values[ "available", "soft_deleted", "purged", "cross_account", "unknown" ] blob_anonymous_access_enabledboolean encryption_settingsobject key_source The encryption key source (provider). OneOfobjectobject$typestring Valid values[ "key_vault" ] key_idstring objectobject$typestring Valid values[ "storage" ] kindstring Valid values[ "blob_storage", "block_blob_storage", "file_storage", "storage", "storage_v2", "unknown" ] namestring objectobject$typestring Valid values[ "container_group" ] analysisobject encrypted_with_expired_keyboolean | null encrypted_with_exportable_keyboolean | null encrypted_with_noncompliant_keyboolean encrypted_with_overly_permissive_management_keyboolean encrypted_with_overly_permissive_usage_keyboolean encrypted_with_quantum_vulnerable_keyboolean | null encrypted_with_shared_keyboolean key_availabilitystring This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown Valid values[ "available", "soft_deleted", "purged", "cross_account", "unknown" ] encryption_sourceOneOfobjectobject$typestring Valid values[ "microsoft_managed_key" ] objectobject$typestring Valid values[ "customer_managed_key" ] key_idstring namestring objectobject$typestring Valid values[ "managed_disk" ] analysisobject encrypted_with_expired_keyboolean | null encrypted_with_exportable_keyboolean | null encrypted_with_noncompliant_keyboolean encrypted_with_overly_permissive_management_keyboolean | null encrypted_with_overly_permissive_usage_keyboolean | null encrypted_with_quantum_vulnerable_keyboolean | null encrypted_with_shared_keyboolean | null key_availabilitystring This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown Valid values[ "available", "soft_deleted", "purged", "cross_account", "unknown" ] disk_size_gbinteger (int32) disk_statestring Used to represent state of [AzureManagedDisk]. for reference: [Documentation](https://learn.microsoft.com/en-us/rest/api/compute/disks/list-by-resource-group?view=rest-compute-2024-03-01&tabs=HTTP#diskstate) Valid values[ "active_sas", "active_sas_frozen", "active_upload", "attached", "frozen", "ready_to_upload", "reserved", "unattached", "other" ] disk_typestring Used to represent SKU of [AzureManagedDisk]. For reference: [Documentation](https://learn.microsoft.com/en-us/rest/api/compute/disks/list-by-resource-group?view=rest-compute-2024-03-01&tabs=HTTP#diskstate) Valid values[ "premium_v2_lrs", "premium_lrs", "premium_zrs", "standard_ssd_lrs", "standard_ssd_zrs", "standard_lrs", "ultra_ssd_lrs" ] encryption_settings Used to describe [Server-side encryption](https://learn.microsoft.com/en-us/azure/virtual-machines/disk-encryption) configuration of [AzureManagedDisks] - This does not cover [Azure Disk Encryption](https://learn.microsoft.com/en-us/azure/virtual-machines/linux/disk-encryption-overview) which is handled on a volume level on VM OneOfobjectobject$typestring Valid values[ "encryption_at_rest_with_azure_managed_key" ] objectobject$typestring Valid values[ "confidential_vm_encrypted_with_azure_managed_key" ] objectobject$typestring Valid values[ "confidential_vm_encrypted_with_customer_key" ] key_idstring key_rotation_enabledboolean objectobject$typestring Valid values[ "encryption_at_rest_with_customer_key" ] key_idstring key_rotation_enabledboolean objectobject$typestring Valid values[ "encryption_at_rest_with_azure_and_customer_keys" ] key_idstring key_rotation_enabledboolean namestring objectobject$typestring Valid values[ "managed_cluster" ] analysisobject encrypted_with_expired_keyboolean | null encrypted_with_exportable_keyboolean | null encrypted_with_noncompliant_keyboolean encrypted_with_overly_permissive_management_keyboolean encrypted_with_overly_permissive_usage_keyboolean encrypted_with_quantum_vulnerable_keyboolean | null encrypted_with_shared_keyboolean key_availabilitystring This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown Valid values[ "available", "soft_deleted", "purged", "cross_account", "unknown" ] disk_encryption_detailsOneOfobjectobject$typestring Valid values[ "encryption_at_rest_with_customer_key" ] key_idstring key_rotation_enabledboolean objectobject$typestring Valid values[ "encryption_at_rest_with_platform_key" ] namestring objectobject$typestring Valid values[ "storage_account_blob" ] analysisobject encrypted_with_expired_keyboolean encrypted_with_exportable_keyboolean encrypted_with_noncompliant_keyboolean encrypted_with_overly_permissive_management_keyboolean encrypted_with_overly_permissive_usage_keyboolean encrypted_with_quantum_vulnerable_keyboolean encrypted_with_shared_keyboolean key_availabilitystring This enum will be used for denoting key availability for all services in all cloud providers. Each variant corresponds to different states of key used to encrypt the service. If a service is not encrypted, the key will me marked as Unknown Valid values[ "available", "soft_deleted", "purged", "cross_account", "unknown" ] container_namestring encryption_settingsobject key_source The encryption key source (provider). OneOfobjectobject$typestring Valid values[ "key_vault" ] key_idstring objectobject$typestring Valid values[ "storage" ] namestring storage_account_namestring regionstring Valid values[ "asia", "asia_pacific", "australia", "australia_central", "australia_central2", "australia_east", "australia_south_east", "brazil", "brazil_south", "brazil_south_east", "brazil_us", "canada", "canada_central", "canada_east", "central_india", "central_us", "central_us_euap", "central_us_stage", "east_asia", "east_asia_stage", "east_us", "east_us_stage", "east_us_stg", "east_us2", "east_us2_stage", "east_us2_euap", "europe", "france", "france_central", "france_south", "germany", "germany_north", "germany_west_central", "global", "india", "israel", "israel_central", "italy", "italy_north", "japan", "japan_east", "japan_west", "jio_india_central", "jio_india_west", "korea", "korea_central", "korea_south", "new_zealand", "north_central_us", "north_central_us_stage", "north_europe", "norway", "norway_east", "norway_west", "poland", "poland_central", "qatar", "qatar_central", "singapore", "south_africa", "south_africa_north", "south_africa_west", "south_central_us", "south_central_us_stage", "south_east_asia", "south_east_asia_stage", "south_india", "sweden", "sweden_central", "switzerland", "switzerland_north", "switzerland_west", "uae", "uae_central", "uae_north", "uk", "uk_south", "uk_west", "united_states", "united_states_euap", "west_central_us", "west_europe", "west_india", "west_us", "west_us_stage", "west_us2", "west_us2_stage", "west_us3", "other" ] resource_groupobject namestring resource_idstring subscriptionobject idstring (uuid) namestring tenant_idstring (uuid) objectobject$typestring Valid values[ "on_prem" ] detailsOneOfobjectobject$typestring Valid values[ "on_prem_key" ] analysisobject crypto_policy_complianceobject is_compliantboolean violation_reasonstring | null key_expiration_complianceobject key_expiry_greater_than_compliance_periodboolean key_rotation_compliancestring Valid values[ "compliant", "not_rotated_in_compliance_period", "rotation_status_not_known" ] usage_detailsobject encryptobject service_countinteger created_atstring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z encryption_algorithmstring Valid values[ "aes", "dsa", "ecdh", "ecmqv", "ed_dsa", "fpe", "hmac_sha", "rc2", "rc4", "rsa", "rsa_oaep", "sike", "des", "des3", "aes128", "aes192", "aes256", "cha_cha20_poly1305", "x_cha_cha20_poly1305", "camellia128", "camellia192", "camellia256", "aria128", "aria192", "aria256", "twofish128", "twofish192", "twofish256", "blowfish128", "blowfish256", "sm4_128", "des56", "tdes2_key112", "tdes3_key168", "des_x", "rc2_40", "rc2_64", "rc2_128", "rc4_40", "rc4_128", "rc4_256", "hmac_sha1", "hmac_sha224", "hmac_sha256", "hmac_sha384", "hmac_sha512", "rsa512", "rsa1024", "rsa2048", "rsa3072", "rsa4096", "ecdsa_p256", "ecdsa_p384", "ecdsa_p521", "ecdsa_secp256k1", "ecdsa_brainpool_p256r1", "ecdsa_brainpool_p384r1", "ecdsa_brainpool_p512r1", "ecdh_p256", "ecdh_p384", "ecdh_p521", "ecdh_secp256k1", "ecdh_brainpool_p256r1", "ecdh_brainpool_p384r1", "ecdh_brainpool_p512r1", "ecmqv_p256", "ecmqv_p384", "ecmqv_p521", "ed25519", "ed448", "x25519", "x448", "ec_generic_p256", "ec_generic_p384", "ec_generic_p521", "ec_generic_secp256k1", "ec_generic_brainpool_p256r1", "ec_generic_brainpool_p384r1", "ec_generic_brainpool_p512r1", "ec_generic_curve25519", "ec_generic_curve448", "dsa1024", "dsa2048", "dsa3072", "sm2_sign", "sm2_kem", "aead_aes256_cbc_hmac_sha256", "ml_kem512", "ml_kem768", "ml_kem1024", "ml_dsa44", "ml_dsa65", "ml_dsa87", "falcon512", "falcon1024", "sphincs_plus_shake128s", "sphincs_plus_shake128f", "sphincs_plus_shake192s", "sphincs_plus_shake192f", "sphincs_plus_shake256s", "sphincs_plus_shake256f", "sike_p434", "sike_p503", "sike_p610", "sike_p751", "hidden", "unknown" ] expires_atstring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z key_categorystring Valid values[ "master_key", "data_encryption_key", "asymmetric_key" ] key_rotation_statusOneOfobjectobject$typestring Valid values[ "unknown" ] objectobject$typestring Valid values[ "rotated" ] last_rotated_atstring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z objectobject$typestring Valid values[ "not_rotated" ] key_sourcestring Valid values[ "hsm", "fortanix", "oracle_key_vault", "azure_kv", "file_system_key_store", "native", "other" ] namestring | null next_rotation_atstring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z source_scan_inventory_objectobject idstring (uuid) scan_idstring (uuid) statusstring Valid values[ "valid", "expired" ] versionstring | null objectobject$typestring Valid values[ "on_prem_ms_sql_database" ] analysisobject encrypted_with_noncompliant_keyboolean encrypted_with_quantum_vulnerable_keyboolean | null database_namestring encryptedstring Valid values[ "no_encryption_key", "unencrypted", "encryption_in_progress", "encrypted", "key_change_in_progress", "decryption_in_progress", "protection_change_in_progress" ] encryption_details Array of object (DiscoveryOnPremMsSqlDatabaseEncryption) object encryption_key_idstring encryption_key_usestring Valid values[ "tde", "column_level" ] objectobject$typestring Valid values[ "on_prem_oracle_database" ] analysisobject encrypted_with_noncompliant_keyboolean encrypted_with_quantum_vulnerable_keyboolean | null database_namestring encryption_detailsobject encryption_key_details Array of object (DiscoveryOnPremOracleDatabaseEncryptionKeyDetails) object encryption_key_idstring encryption_key_usestring Valid values[ "tde", "column_level" ] wallet_locationstring | null wallet_namestring wallet_statusstring Valid values[ "valid", "expired", "unavailable", "closed", "open", "open_no_master_key", "open_unknown_master_key_status", "undefined" ] objectobject$typestring Valid values[ "on_prem_source_code_repo" ] analysisobject asset_countinteger violationsobject property*object additionalPropertiescountinteger branchstring namestring repo_urlstring (url) revisionstring subfolderstring | null objectobject$typestring Valid values[ "on_prem_source_code_component" ] analysisobject crypto_policy_complianceobject is_compliantboolean violation_reasonstring | null is_quantum_vulnerableboolean | null detailsobject asset_typestring Valid values[ "algorithm", "protocol", "certificate", "private-key", "public-key", "secret-key", "key", "ciphertext", "signature", "digest", "initialization-vector", "nonce", "seed", "salt", "shared-secret", "tag", "additional-data", "password", "credential", "token", "other", "unknown" ] bom_refstring key_specOneOfstringstringValid values[ "rsa512" ] stringstringValid values[ "rsa1024" ] stringstringValid values[ "rsa2048" ] stringstringValid values[ "rsa3072" ] stringstringValid values[ "rsa4096" ] stringstringValid values[ "aes128" ] stringstringValid values[ "aes192" ] stringstringValid values[ "aes256" ] stringstringValid values[ "ecc_nist_p256" ] stringstringValid values[ "ecc_nist_p384" ] stringstringValid values[ "ecc_nist_p521" ] stringstringValid values[ "ecc_ed25519" ] stringstringValid values[ "ecc_x25519" ] stringstringValid values[ "ecc_secg_p256_k1" ] stringstringValid values[ "hmac224" ] stringstringValid values[ "hmac256" ] stringstringValid values[ "hmac384" ] stringstringValid values[ "hmac512" ] stringstringValid values[ "sha1" ] stringstringValid values[ "sha224" ] stringstringValid values[ "sha256" ] stringstringValid values[ "sha384" ] stringstringValid values[ "sha512" ] stringstringValid values[ "sha3_224" ] stringstringValid values[ "sha3_256" ] stringstringValid values[ "sha3_384" ] stringstringValid values[ "sha3_512" ] stringstringValid values[ "rsa_oaep" ] stringstringValid values[ "des" ] stringstringValid values[ "des3" ] stringstringValid values[ "des_x" ] stringstringValid values[ "sm2" ] DiscoveryOnPremSourceCodeComponentCryptoSpecVariantOtherobject (DiscoveryOnPremSourceCodeComponentCryptoSpecVariantOther)otherobject valuestring namestring occurrences Array of object (DiscoveryOnPremSourceCodeComponentOccurrence) object additional_contextstring | null bom_refstring | null lineinteger | null locationstring offsetinteger | null symbolstring | null repo_urlstring (url) revisionstring objectobject$typestring Valid values[ "filesystem" ] agent_infoobject first_seen_at_unix_millisinteger last_seen_at_unix_millisinteger analysisobject agent_analysisobject asset_count_by_typeobject property*integer additionalProperties certificate_statuses_countobject property*integer additionalProperties violations_countobject property*object additionalPropertiesproperty*integer additionalProperties certificate_analysisobject certificate_issuerstring Certificate's `issuer` generated from [DistinguishedNameto_string()] / parseable by [DistinguishedNamefrom_str()] Certificate Distinguished Name (DN) mandated + optional fields, as defined in RFC 5280 §4.1.2.4 - used for both `issuer` and `subject`. ASN.1 in the same RFC allows zero or more values for each of these fields. To present it nicely in a UI: - Primary label: first `common_name` (CN). - Fallback: first `organization_name` (O). - Optional detail: append `organizational_unit_name` (OU), `country_name` (C), or `domain_component` (DC) as needed. The string is presented as a serialized json from distinguished name map indexed by the short labels (uppercase) for each sub-field. certificate_statusstring Valid values[ "issued", "inactive", "expired", "failed", "revoked", "pending_validation" ] certificate_subjectstring Certificate's `subject` generated from [DistinguishedNameto_string()] / parseable by [DistinguishedNamefrom_str()] Certificate Distinguished Name (DN) mandated + optional fields, as defined in RFC 5280 §4.1.2.4 - used for both `issuer` and `subject`. ASN.1 in the same RFC allows zero or more values for each of these fields. To present it nicely in a UI: - Primary label: first `common_name` (CN). - Fallback: first `organization_name` (O). - Optional detail: append `organizational_unit_name` (OU), `country_name` (C), or `domain_component` (DC) as needed. The string is presented as a serialized json from distinguished name map indexed by the short labels (uppercase) for each sub-field. crypto_policy_complianceobject is_compliantboolean violation_reasonstring | null key_specstring Valid values[ "aes", "dsa", "ecdh", "ecmqv", "ed_dsa", "fpe", "hmac_sha", "rc2", "rc4", "rsa", "rsa_oaep", "sike", "des", "des3", "aes128", "aes192", "aes256", "cha_cha20_poly1305", "x_cha_cha20_poly1305", "camellia128", "camellia192", "camellia256", "aria128", "aria192", "aria256", "twofish128", "twofish192", "twofish256", "blowfish128", "blowfish256", "sm4_128", "des56", "tdes2_key112", "tdes3_key168", "des_x", "rc2_40", "rc2_64", "rc2_128", "rc4_40", "rc4_128", "rc4_256", "hmac_sha1", "hmac_sha224", "hmac_sha256", "hmac_sha384", "hmac_sha512", "rsa512", "rsa1024", "rsa2048", "rsa3072", "rsa4096", "ecdsa_p256", "ecdsa_p384", "ecdsa_p521", "ecdsa_secp256k1", "ecdsa_brainpool_p256r1", "ecdsa_brainpool_p384r1", "ecdsa_brainpool_p512r1", "ecdh_p256", "ecdh_p384", "ecdh_p521", "ecdh_secp256k1", "ecdh_brainpool_p256r1", "ecdh_brainpool_p384r1", "ecdh_brainpool_p512r1", "ecmqv_p256", "ecmqv_p384", "ecmqv_p521", "ed25519", "ed448", "x25519", "x448", "ec_generic_p256", "ec_generic_p384", "ec_generic_p521", "ec_generic_secp256k1", "ec_generic_brainpool_p256r1", "ec_generic_brainpool_p384r1", "ec_generic_brainpool_p512r1", "ec_generic_curve25519", "ec_generic_curve448", "dsa1024", "dsa2048", "dsa3072", "sm2_sign", "sm2_kem", "aead_aes256_cbc_hmac_sha256", "ml_kem512", "ml_kem768", "ml_kem1024", "ml_dsa44", "ml_dsa65", "ml_dsa87", "falcon512", "falcon1024", "sphincs_plus_shake128s", "sphincs_plus_shake128f", "sphincs_plus_shake192s", "sphincs_plus_shake192f", "sphincs_plus_shake256s", "sphincs_plus_shake256f", "sike_p434", "sike_p503", "sike_p610", "sike_p751", "hidden", "unknown" ] os_analysisobject agent_countinteger asset_count_by_typeobject property*integer additionalProperties certificate_statuses_countobject property*integer additionalProperties violations_countobject property*object additionalPropertiesproperty*integer additionalProperties violations Array of string (DiscoveryOnPremFsViolation) string Valid values[ "expired", "expiring_soon", "non_compliant_algorithm", "non_compliant_signature", "key_not_rotated_in_compliance_period", "secret_file_too_readable", "anyone_can_write", "expiry_exceeds_threshold", "overly_permissive_certificate", "quantum_vulnerable" ] host_infoobject hostnamestring idstring ips Array of string string os_stringstring objectobject file_infoobject file_pathstring file_permissionsobject everyone Array of string (DiscoveryPermissionFlag) “Other” users on POSIX; on Windows, “Everyone” ACL entry string Valid values[ "Read", "Write", "Execute" ] groupobject flags Array of string (DiscoveryPermissionFlag) What the owner can do with the file string Valid values[ "Read", "Write", "Execute" ] idstring User or Group id -- String to allow representing both POSIX & Windows IDs namestring User or Group name userobject flags Array of string (DiscoveryPermissionFlag) What the owner can do with the file string Valid values[ "Read", "Write", "Execute" ] idstring User or Group id -- String to allow representing both POSIX & Windows IDs namestring User or Group name file_sizeinteger | null modification_unix_millisinteger metadataOneOfDiscoveryCryptographicMetadataVariantSymmetricKeyobject (DiscoveryCryptographicMetadataVariantSymmetricKey)symmetric_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPublicKeyobject (DiscoveryCryptographicMetadataVariantPublicKey)public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPrivateKeyobject (DiscoveryCryptographicMetadataVariantPrivateKey)private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantCertificateobject (DiscoveryCryptographicMetadataVariantCertificate)certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger DiscoveryCryptographicMetadataVariantTrustedCertificateobject (DiscoveryCryptographicMetadataVariantTrustedCertificate)trusted_certificateobject certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger extended_usageobject allowed_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found rejected_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found DiscoveryCryptographicMetadataVariantCertificateSigningRequestobject (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)certificate_signing_requestobject pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null property*string additionalProperties DiscoveryCryptographicMetadataVariantCertificateRevocationListobject (DiscoveryCryptographicMetadataVariantCertificateRevocationList)certificate_revocation_listobject issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs7object (DiscoveryCryptographicMetadataVariantPkcs7)pkcs7OneOfDiscoveryPkcs7MetadataVariantDataobject (DiscoveryPkcs7MetadataVariantData)dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedDataobject (DiscoveryPkcs7MetadataVariantSignedData)signed_dataobject certificates Array of object (DiscoveryCertificateMetadata) | null object fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger crls Array of object (DiscoveryCertificateRevocationList) | null object issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest_algorithms Array of object (DiscoveryCryptographicAlgorithm) OneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encapsulated_content_typestring signer_info Array of object (DiscoveryPkcs7SignerInfoMetadata) object digest_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 sidOneOfDiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumberobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)issuer_and_serial_numberobject name Array of string string serial_number Array of integer integer Minimum0Maximum255 DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifierobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)subject_key_identifierobject id Array of integer integer Minimum0Maximum255 signature Array of integer integer Minimum0Maximum255 signature_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signed_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string unsigned_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string versioninteger Minimum0Maximum4294967295 versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEnvelopedDataobject (DiscoveryPkcs7MetadataVariantEnvelopedData)enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedAndEnvelopedDataobject (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)signed_and_enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDigestedDataobject (DiscoveryPkcs7MetadataVariantDigestedData)digested_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedDataobject (DiscoveryPkcs7MetadataVariantEncryptedData)encrypted_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDataWithAttributesobject (DiscoveryPkcs7MetadataVariantDataWithAttributes)data_with_attributesobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfoobject (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)encrypted_private_key_infoobject versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs12object (DiscoveryCryptographicMetadataVariantPkcs12)pkcs12object encryptedboolean mac_dataobject algorithOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest Array of integer integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantParametersobject (DiscoveryCryptographicMetadataVariantParameters)parametersOneOfDiscoveryParametersMetadataVariantEllipticCurveobject (DiscoveryParametersMetadataVariantEllipticCurve)elliptic_curveOneOfDiscoveryEllipticCurveParamsMetadataVariantNamedCurveobject (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)named_curve Elliptic curves for selected crypto algorithms OneOfstringstringValid values[ "p256" ] stringstringValid values[ "p384" ] stringstringValid values[ "p521" ] stringstringValid values[ "k256" ] stringstringValid values[ "x25519" ] stringstringValid values[ "ed25519" ] stringstringValid values[ "x448" ] stringstringValid values[ "ed448" ] stringstringValid values[ "brainpool_p256r1" ] stringstringValid values[ "brainpool_p384r1" ] stringstringValid values[ "brainpool_p512r1" ] DiscoveryCurveVariantOtherobject (DiscoveryCurveVariantOther)otherstring A catch-all if you really need to accept arbitrary curve names stringstringValid values[ "prime192_v1" ] stringstringValid values[ "prime192_v2" ] stringstringValid values[ "prime192_v3" ] stringstringValid values[ "prime239_v1" ] stringstringValid values[ "prime239_v2" ] stringstringValid values[ "prime239_v3" ] stringstringValid values[ "prime256_v1" ] stringstringValid values[ "ansi_t163_k1" ] stringstringValid values[ "ansi_t163_r1" ] stringstringValid values[ "ansi_t239_k1" ] stringstringValid values[ "sec_t113_r1" ] stringstringValid values[ "sec_t113_r2" ] stringstringValid values[ "sec_p112_r1" ] stringstringValid values[ "sec_p112_r2" ] stringstringValid values[ "ansi_p160_r1" ] stringstringValid values[ "ansi_p160_k1" ] stringstringValid values[ "ansi_p256_k1" ] stringstringValid values[ "ansi_t163_r2" ] stringstringValid values[ "ansi_t283_k1" ] stringstringValid values[ "ansi_t283_r1" ] stringstringValid values[ "sec_t131_r1" ] stringstringValid values[ "sec_t131_r2" ] stringstringValid values[ "ansi_t193_r1" ] stringstringValid values[ "ansi_t193_r2" ] stringstringValid values[ "ansi_t233_k1" ] stringstringValid values[ "ansi_t233_r1" ] stringstringValid values[ "sec_p128_r1" ] stringstringValid values[ "sec_p128_r2" ] stringstringValid values[ "ansi_p160_r2" ] stringstringValid values[ "ansi_p192_k1" ] stringstringValid values[ "ansi_p224_k1" ] stringstringValid values[ "ansi_p224_r1" ] stringstringValid values[ "ansi_p384_r1" ] stringstringValid values[ "ansi_p521_r1" ] stringstringValid values[ "ansi_t409_k1" ] stringstringValid values[ "ansi_t409_r1" ] stringstringValid values[ "ansi_t571_k1" ] stringstringValid values[ "ansi_t571_r1" ] stringstringValid values[ "c2_pnb163_v1" ] stringstringValid values[ "c2_pnb163_v2" ] stringstringValid values[ "c2_pnb163_v3" ] stringstringValid values[ "c2_pnb176_w1" ] stringstringValid values[ "c2_tnb191_v1" ] stringstringValid values[ "c2_tnb191_v2" ] stringstringValid values[ "c2_tnb191_v3" ] stringstringValid values[ "c2_onb191_v4" ] stringstringValid values[ "c2_onb191_v5" ] stringstringValid values[ "c2_pnb208_w1" ] stringstringValid values[ "c2_tnb239_v1" ] stringstringValid values[ "c2_tnb239_v2" ] stringstringValid values[ "c2_tnb239_v3" ] stringstringValid values[ "c2_onb239_v4" ] stringstringValid values[ "c2_onb239_v5" ] stringstringValid values[ "c2_pnb272_w1" ] stringstringValid values[ "c2_pnb304_w1" ] stringstringValid values[ "c2_tnb359_v1" ] stringstringValid values[ "c2_pnb368_w1" ] stringstringValid values[ "c2_tnb431_r1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls3" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls4" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls5" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls6" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls7" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls8" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls9" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls10" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls11" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls12" ] stringstringValid values[ "brainpool_p160_r1" ] stringstringValid values[ "brainpool_p160_t1" ] stringstringValid values[ "brainpool_p192_r1" ] stringstringValid values[ "brainpool_p192_t1" ] stringstringValid values[ "brainpool_p224_r1" ] stringstringValid values[ "brainpool_p224_t1" ] stringstringValid values[ "brainpool_p256_r1" ] stringstringValid values[ "brainpool_p256_t1" ] stringstringValid values[ "brainpool_p320_r1" ] stringstringValid values[ "brainpool_p320_t1" ] stringstringValid values[ "brainpool_p384_r1" ] stringstringValid values[ "brainpool_p384_t1" ] stringstringValid values[ "brainpool_p512_r1" ] stringstringValid values[ "brainpool_p512_t1" ] stringstringValid values[ "implicit_curve" ] stringstringValid values[ "specified_curve" ] DiscoveryParametersMetadataVariantDiffieHellmanobject (DiscoveryParametersMetadataVariantDiffieHellman)diffie_hellmanobject g Array of integer integer Minimum0Maximum255 p Array of integer integer Minimum0Maximum255 q Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantJwtobject (DiscoveryCryptographicMetadataVariantJwt)jwtobject headerOneOfDiscoveryJwtHeaderVariantJwsHeaderobject (DiscoveryJwtHeaderVariantJwsHeader)jws_headerobject algorithmstring | null content_typestring | null critical Array of string | null string jwkOneOfDiscoveryCryptographicMetadataVariantSymmetricKeyobject (DiscoveryCryptographicMetadataVariantSymmetricKey)symmetric_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPublicKeyobject (DiscoveryCryptographicMetadataVariantPublicKey)public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPrivateKeyobject (DiscoveryCryptographicMetadataVariantPrivateKey)private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantCertificateobject (DiscoveryCryptographicMetadataVariantCertificate)certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger DiscoveryCryptographicMetadataVariantTrustedCertificateobject (DiscoveryCryptographicMetadataVariantTrustedCertificate)trusted_certificateobject certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger extended_usageobject allowed_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found rejected_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found DiscoveryCryptographicMetadataVariantCertificateSigningRequestobject (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)certificate_signing_requestobject pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null property*string additionalProperties DiscoveryCryptographicMetadataVariantCertificateRevocationListobject (DiscoveryCryptographicMetadataVariantCertificateRevocationList)certificate_revocation_listobject issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs7object (DiscoveryCryptographicMetadataVariantPkcs7)pkcs7OneOfDiscoveryPkcs7MetadataVariantDataobject (DiscoveryPkcs7MetadataVariantData)dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedDataobject (DiscoveryPkcs7MetadataVariantSignedData)signed_dataobject certificates Array of object (DiscoveryCertificateMetadata) | null object fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger crls Array of object (DiscoveryCertificateRevocationList) | null object issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest_algorithms Array of object (DiscoveryCryptographicAlgorithm) OneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encapsulated_content_typestring signer_info Array of object (DiscoveryPkcs7SignerInfoMetadata) object digest_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 sidOneOfDiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumberobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)issuer_and_serial_numberobject name Array of string string serial_number Array of integer integer Minimum0Maximum255 DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifierobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)subject_key_identifierobject id Array of integer integer Minimum0Maximum255 signature Array of integer integer Minimum0Maximum255 signature_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signed_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string unsigned_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string versioninteger Minimum0Maximum4294967295 versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEnvelopedDataobject (DiscoveryPkcs7MetadataVariantEnvelopedData)enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedAndEnvelopedDataobject (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)signed_and_enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDigestedDataobject (DiscoveryPkcs7MetadataVariantDigestedData)digested_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedDataobject (DiscoveryPkcs7MetadataVariantEncryptedData)encrypted_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDataWithAttributesobject (DiscoveryPkcs7MetadataVariantDataWithAttributes)data_with_attributesobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfoobject (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)encrypted_private_key_infoobject versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs12object (DiscoveryCryptographicMetadataVariantPkcs12)pkcs12object encryptedboolean mac_dataobject algorithOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest Array of integer integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantParametersobject (DiscoveryCryptographicMetadataVariantParameters)parametersOneOfDiscoveryParametersMetadataVariantEllipticCurveobject (DiscoveryParametersMetadataVariantEllipticCurve)elliptic_curveOneOfDiscoveryEllipticCurveParamsMetadataVariantNamedCurveobject (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)named_curve Elliptic curves for selected crypto algorithms OneOfstringstringValid values[ "p256" ] stringstringValid values[ "p384" ] stringstringValid values[ "p521" ] stringstringValid values[ "k256" ] stringstringValid values[ "x25519" ] stringstringValid values[ "ed25519" ] stringstringValid values[ "x448" ] stringstringValid values[ "ed448" ] stringstringValid values[ "brainpool_p256r1" ] stringstringValid values[ "brainpool_p384r1" ] stringstringValid values[ "brainpool_p512r1" ] DiscoveryCurveVariantOtherobject (DiscoveryCurveVariantOther)otherstring A catch-all if you really need to accept arbitrary curve names stringstringValid values[ "prime192_v1" ] stringstringValid values[ "prime192_v2" ] stringstringValid values[ "prime192_v3" ] stringstringValid values[ "prime239_v1" ] stringstringValid values[ "prime239_v2" ] stringstringValid values[ "prime239_v3" ] stringstringValid values[ "prime256_v1" ] stringstringValid values[ "ansi_t163_k1" ] stringstringValid values[ "ansi_t163_r1" ] stringstringValid values[ "ansi_t239_k1" ] stringstringValid values[ "sec_t113_r1" ] stringstringValid values[ "sec_t113_r2" ] stringstringValid values[ "sec_p112_r1" ] stringstringValid values[ "sec_p112_r2" ] stringstringValid values[ "ansi_p160_r1" ] stringstringValid values[ "ansi_p160_k1" ] stringstringValid values[ "ansi_p256_k1" ] stringstringValid values[ "ansi_t163_r2" ] stringstringValid values[ "ansi_t283_k1" ] stringstringValid values[ "ansi_t283_r1" ] stringstringValid values[ "sec_t131_r1" ] stringstringValid values[ "sec_t131_r2" ] stringstringValid values[ "ansi_t193_r1" ] stringstringValid values[ "ansi_t193_r2" ] stringstringValid values[ "ansi_t233_k1" ] stringstringValid values[ "ansi_t233_r1" ] stringstringValid values[ "sec_p128_r1" ] stringstringValid values[ "sec_p128_r2" ] stringstringValid values[ "ansi_p160_r2" ] stringstringValid values[ "ansi_p192_k1" ] stringstringValid values[ "ansi_p224_k1" ] stringstringValid values[ "ansi_p224_r1" ] stringstringValid values[ "ansi_p384_r1" ] stringstringValid values[ "ansi_p521_r1" ] stringstringValid values[ "ansi_t409_k1" ] stringstringValid values[ "ansi_t409_r1" ] stringstringValid values[ "ansi_t571_k1" ] stringstringValid values[ "ansi_t571_r1" ] stringstringValid values[ "c2_pnb163_v1" ] stringstringValid values[ "c2_pnb163_v2" ] stringstringValid values[ "c2_pnb163_v3" ] stringstringValid values[ "c2_pnb176_w1" ] stringstringValid values[ "c2_tnb191_v1" ] stringstringValid values[ "c2_tnb191_v2" ] stringstringValid values[ "c2_tnb191_v3" ] stringstringValid values[ "c2_onb191_v4" ] stringstringValid values[ "c2_onb191_v5" ] stringstringValid values[ "c2_pnb208_w1" ] stringstringValid values[ "c2_tnb239_v1" ] stringstringValid values[ "c2_tnb239_v2" ] stringstringValid values[ "c2_tnb239_v3" ] stringstringValid values[ "c2_onb239_v4" ] stringstringValid values[ "c2_onb239_v5" ] stringstringValid values[ "c2_pnb272_w1" ] stringstringValid values[ "c2_pnb304_w1" ] stringstringValid values[ "c2_tnb359_v1" ] stringstringValid values[ "c2_pnb368_w1" ] stringstringValid values[ "c2_tnb431_r1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls3" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls4" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls5" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls6" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls7" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls8" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls9" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls10" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls11" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls12" ] stringstringValid values[ "brainpool_p160_r1" ] stringstringValid values[ "brainpool_p160_t1" ] stringstringValid values[ "brainpool_p192_r1" ] stringstringValid values[ "brainpool_p192_t1" ] stringstringValid values[ "brainpool_p224_r1" ] stringstringValid values[ "brainpool_p224_t1" ] stringstringValid values[ "brainpool_p256_r1" ] stringstringValid values[ "brainpool_p256_t1" ] stringstringValid values[ "brainpool_p320_r1" ] stringstringValid values[ "brainpool_p320_t1" ] stringstringValid values[ "brainpool_p384_r1" ] stringstringValid values[ "brainpool_p384_t1" ] stringstringValid values[ "brainpool_p512_r1" ] stringstringValid values[ "brainpool_p512_t1" ] stringstringValid values[ "implicit_curve" ] stringstringValid values[ "specified_curve" ] DiscoveryParametersMetadataVariantDiffieHellmanobject (DiscoveryParametersMetadataVariantDiffieHellman)diffie_hellmanobject g Array of integer integer Minimum0Maximum255 p Array of integer integer Minimum0Maximum255 q Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantJwt DiscoveryCryptographicMetadataVariantSshobject (DiscoveryCryptographicMetadataVariantSsh)sshOneOfDiscoverySshMetadataVariantOpenSshPublicKeyobject (DiscoverySshMetadataVariantOpenSshPublicKey)open_ssh_public_keyobject commentstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantOpenSshPrivateKeyobject (DiscoverySshMetadataVariantOpenSshPrivateKey)open_ssh_private_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantPuttyKeyobject (DiscoverySshMetadataVariantPuttyKey)putty_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 private_macstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPgpobject (DiscoveryCryptographicMetadataVariantPgp)pgpOneOfDiscoveryPgpMetadataVariantPrivateKeyobject (DiscoveryPgpMetadataVariantPrivateKey)PrivateKeyobject DiscoveryPgpMetadataVariantPublicKeyobject (DiscoveryPgpMetadataVariantPublicKey)PublicKeyobject DiscoveryPgpMetadataVariantMessageobject (DiscoveryPgpMetadataVariantMessage)Messagestring Valid values[ "Literal", "Compressed", "Signed", "SignedOnePass", "Encrypted" ] DiscoveryPgpMetadataVariantSignatureobject (DiscoveryPgpMetadataVariantSignature)Signatureobject DiscoveryCryptographicMetadataVariantMultipleobject (DiscoveryCryptographicMetadataVariantMultiple)multiple Array of object (DiscoveryCryptographicMetadata) This is used if a single file contains multiple crytpogrpahic materials within it. This primarily applies to PEM files, as multiple PEM blocks can be concatenated together without issue. OneOfDiscoveryCryptographicMetadataVariantSymmetricKeyobject (DiscoveryCryptographicMetadataVariantSymmetricKey)symmetric_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPublicKeyobject (DiscoveryCryptographicMetadataVariantPublicKey)public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPrivateKeyobject (DiscoveryCryptographicMetadataVariantPrivateKey)private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantCertificateobject (DiscoveryCryptographicMetadataVariantCertificate)certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger DiscoveryCryptographicMetadataVariantTrustedCertificateobject (DiscoveryCryptographicMetadataVariantTrustedCertificate)trusted_certificateobject certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger extended_usageobject allowed_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found rejected_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found DiscoveryCryptographicMetadataVariantCertificateSigningRequestobject (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)certificate_signing_requestobject pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null property*string additionalProperties DiscoveryCryptographicMetadataVariantCertificateRevocationListobject (DiscoveryCryptographicMetadataVariantCertificateRevocationList)certificate_revocation_listobject issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs7object (DiscoveryCryptographicMetadataVariantPkcs7)pkcs7OneOfDiscoveryPkcs7MetadataVariantDataobject (DiscoveryPkcs7MetadataVariantData)dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedDataobject (DiscoveryPkcs7MetadataVariantSignedData)signed_dataobject certificates Array of object (DiscoveryCertificateMetadata) | null object fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger crls Array of object (DiscoveryCertificateRevocationList) | null object issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest_algorithms Array of object (DiscoveryCryptographicAlgorithm) OneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encapsulated_content_typestring signer_info Array of object (DiscoveryPkcs7SignerInfoMetadata) object digest_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 sidOneOfDiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumberobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)issuer_and_serial_numberobject name Array of string string serial_number Array of integer integer Minimum0Maximum255 DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifierobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)subject_key_identifierobject id Array of integer integer Minimum0Maximum255 signature Array of integer integer Minimum0Maximum255 signature_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signed_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string unsigned_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string versioninteger Minimum0Maximum4294967295 versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEnvelopedDataobject (DiscoveryPkcs7MetadataVariantEnvelopedData)enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedAndEnvelopedDataobject (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)signed_and_enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDigestedDataobject (DiscoveryPkcs7MetadataVariantDigestedData)digested_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedDataobject (DiscoveryPkcs7MetadataVariantEncryptedData)encrypted_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDataWithAttributesobject (DiscoveryPkcs7MetadataVariantDataWithAttributes)data_with_attributesobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfoobject (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)encrypted_private_key_infoobject versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs12object (DiscoveryCryptographicMetadataVariantPkcs12)pkcs12object encryptedboolean mac_dataobject algorithOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest Array of integer integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantParametersobject (DiscoveryCryptographicMetadataVariantParameters)parametersOneOfDiscoveryParametersMetadataVariantEllipticCurveobject (DiscoveryParametersMetadataVariantEllipticCurve)elliptic_curveOneOfDiscoveryEllipticCurveParamsMetadataVariantNamedCurveobject (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)named_curve Elliptic curves for selected crypto algorithms OneOfstringstringValid values[ "p256" ] stringstringValid values[ "p384" ] stringstringValid values[ "p521" ] stringstringValid values[ "k256" ] stringstringValid values[ "x25519" ] stringstringValid values[ "ed25519" ] stringstringValid values[ "x448" ] stringstringValid values[ "ed448" ] stringstringValid values[ "brainpool_p256r1" ] stringstringValid values[ "brainpool_p384r1" ] stringstringValid values[ "brainpool_p512r1" ] DiscoveryCurveVariantOtherobject (DiscoveryCurveVariantOther)otherstring A catch-all if you really need to accept arbitrary curve names stringstringValid values[ "prime192_v1" ] stringstringValid values[ "prime192_v2" ] stringstringValid values[ "prime192_v3" ] stringstringValid values[ "prime239_v1" ] stringstringValid values[ "prime239_v2" ] stringstringValid values[ "prime239_v3" ] stringstringValid values[ "prime256_v1" ] stringstringValid values[ "ansi_t163_k1" ] stringstringValid values[ "ansi_t163_r1" ] stringstringValid values[ "ansi_t239_k1" ] stringstringValid values[ "sec_t113_r1" ] stringstringValid values[ "sec_t113_r2" ] stringstringValid values[ "sec_p112_r1" ] stringstringValid values[ "sec_p112_r2" ] stringstringValid values[ "ansi_p160_r1" ] stringstringValid values[ "ansi_p160_k1" ] stringstringValid values[ "ansi_p256_k1" ] stringstringValid values[ "ansi_t163_r2" ] stringstringValid values[ "ansi_t283_k1" ] stringstringValid values[ "ansi_t283_r1" ] stringstringValid values[ "sec_t131_r1" ] stringstringValid values[ "sec_t131_r2" ] stringstringValid values[ "ansi_t193_r1" ] stringstringValid values[ "ansi_t193_r2" ] stringstringValid values[ "ansi_t233_k1" ] stringstringValid values[ "ansi_t233_r1" ] stringstringValid values[ "sec_p128_r1" ] stringstringValid values[ "sec_p128_r2" ] stringstringValid values[ "ansi_p160_r2" ] stringstringValid values[ "ansi_p192_k1" ] stringstringValid values[ "ansi_p224_k1" ] stringstringValid values[ "ansi_p224_r1" ] stringstringValid values[ "ansi_p384_r1" ] stringstringValid values[ "ansi_p521_r1" ] stringstringValid values[ "ansi_t409_k1" ] stringstringValid values[ "ansi_t409_r1" ] stringstringValid values[ "ansi_t571_k1" ] stringstringValid values[ "ansi_t571_r1" ] stringstringValid values[ "c2_pnb163_v1" ] stringstringValid values[ "c2_pnb163_v2" ] stringstringValid values[ "c2_pnb163_v3" ] stringstringValid values[ "c2_pnb176_w1" ] stringstringValid values[ "c2_tnb191_v1" ] stringstringValid values[ "c2_tnb191_v2" ] stringstringValid values[ "c2_tnb191_v3" ] stringstringValid values[ "c2_onb191_v4" ] stringstringValid values[ "c2_onb191_v5" ] stringstringValid values[ "c2_pnb208_w1" ] stringstringValid values[ "c2_tnb239_v1" ] stringstringValid values[ "c2_tnb239_v2" ] stringstringValid values[ "c2_tnb239_v3" ] stringstringValid values[ "c2_onb239_v4" ] stringstringValid values[ "c2_onb239_v5" ] stringstringValid values[ "c2_pnb272_w1" ] stringstringValid values[ "c2_pnb304_w1" ] stringstringValid values[ "c2_tnb359_v1" ] stringstringValid values[ "c2_pnb368_w1" ] stringstringValid values[ "c2_tnb431_r1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls3" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls4" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls5" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls6" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls7" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls8" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls9" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls10" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls11" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls12" ] stringstringValid values[ "brainpool_p160_r1" ] stringstringValid values[ "brainpool_p160_t1" ] stringstringValid values[ "brainpool_p192_r1" ] stringstringValid values[ "brainpool_p192_t1" ] stringstringValid values[ "brainpool_p224_r1" ] stringstringValid values[ "brainpool_p224_t1" ] stringstringValid values[ "brainpool_p256_r1" ] stringstringValid values[ "brainpool_p256_t1" ] stringstringValid values[ "brainpool_p320_r1" ] stringstringValid values[ "brainpool_p320_t1" ] stringstringValid values[ "brainpool_p384_r1" ] stringstringValid values[ "brainpool_p384_t1" ] stringstringValid values[ "brainpool_p512_r1" ] stringstringValid values[ "brainpool_p512_t1" ] stringstringValid values[ "implicit_curve" ] stringstringValid values[ "specified_curve" ] DiscoveryParametersMetadataVariantDiffieHellmanobject (DiscoveryParametersMetadataVariantDiffieHellman)diffie_hellmanobject g Array of integer integer Minimum0Maximum255 p Array of integer integer Minimum0Maximum255 q Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantJwt DiscoveryCryptographicMetadataVariantSshobject (DiscoveryCryptographicMetadataVariantSsh)sshOneOfDiscoverySshMetadataVariantOpenSshPublicKeyobject (DiscoverySshMetadataVariantOpenSshPublicKey)open_ssh_public_keyobject commentstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantOpenSshPrivateKeyobject (DiscoverySshMetadataVariantOpenSshPrivateKey)open_ssh_private_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantPuttyKeyobject (DiscoverySshMetadataVariantPuttyKey)putty_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 private_macstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPgpobject (DiscoveryCryptographicMetadataVariantPgp)pgpOneOfDiscoveryPgpMetadataVariantPrivateKeyobject (DiscoveryPgpMetadataVariantPrivateKey)PrivateKeyobject DiscoveryPgpMetadataVariantPublicKeyobject (DiscoveryPgpMetadataVariantPublicKey)PublicKeyobject DiscoveryPgpMetadataVariantMessageobject (DiscoveryPgpMetadataVariantMessage)Messagestring Valid values[ "Literal", "Compressed", "Signed", "SignedOnePass", "Encrypted" ] DiscoveryPgpMetadataVariantSignatureobject (DiscoveryPgpMetadataVariantSignature)Signatureobject DiscoveryCryptographicMetadataVariantMultiple jwk_set_urlstring | null key_idstring | null nonce Array of integer | null integer Minimum0Maximum255 token_typestring | null urlstring | null x509_certificate_chain Array of array | null Array of integer integer Minimum0Maximum255 x509_certificate_sha1_thumbprint Array of integer | null integer Minimum0Maximum255 x509_certificate_sha256_thumbprint Array of integer | null integer Minimum0Maximum255 x509_urlstring | null DiscoveryJwtHeaderVariantProtectedJwsHeaderobject (DiscoveryJwtHeaderVariantProtectedJwsHeader)protected_jws_headerobject algorithmstring | null content_typestring | null critical Array of string | null string jwkOneOfDiscoveryCryptographicMetadataVariantSymmetricKeyobject (DiscoveryCryptographicMetadataVariantSymmetricKey)symmetric_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPublicKeyobject (DiscoveryCryptographicMetadataVariantPublicKey)public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPrivateKeyobject (DiscoveryCryptographicMetadataVariantPrivateKey)private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantCertificateobject (DiscoveryCryptographicMetadataVariantCertificate)certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger DiscoveryCryptographicMetadataVariantTrustedCertificateobject (DiscoveryCryptographicMetadataVariantTrustedCertificate)trusted_certificateobject certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger extended_usageobject allowed_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found rejected_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found DiscoveryCryptographicMetadataVariantCertificateSigningRequestobject (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)certificate_signing_requestobject pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null property*string additionalProperties DiscoveryCryptographicMetadataVariantCertificateRevocationListobject (DiscoveryCryptographicMetadataVariantCertificateRevocationList)certificate_revocation_listobject issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs7object (DiscoveryCryptographicMetadataVariantPkcs7)pkcs7OneOfDiscoveryPkcs7MetadataVariantDataobject (DiscoveryPkcs7MetadataVariantData)dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedDataobject (DiscoveryPkcs7MetadataVariantSignedData)signed_dataobject certificates Array of object (DiscoveryCertificateMetadata) | null object fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger crls Array of object (DiscoveryCertificateRevocationList) | null object issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest_algorithms Array of object (DiscoveryCryptographicAlgorithm) OneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encapsulated_content_typestring signer_info Array of object (DiscoveryPkcs7SignerInfoMetadata) object digest_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 sidOneOfDiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumberobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)issuer_and_serial_numberobject name Array of string string serial_number Array of integer integer Minimum0Maximum255 DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifierobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)subject_key_identifierobject id Array of integer integer Minimum0Maximum255 signature Array of integer integer Minimum0Maximum255 signature_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signed_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string unsigned_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string versioninteger Minimum0Maximum4294967295 versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEnvelopedDataobject (DiscoveryPkcs7MetadataVariantEnvelopedData)enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedAndEnvelopedDataobject (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)signed_and_enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDigestedDataobject (DiscoveryPkcs7MetadataVariantDigestedData)digested_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedDataobject (DiscoveryPkcs7MetadataVariantEncryptedData)encrypted_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDataWithAttributesobject (DiscoveryPkcs7MetadataVariantDataWithAttributes)data_with_attributesobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfoobject (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)encrypted_private_key_infoobject versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs12object (DiscoveryCryptographicMetadataVariantPkcs12)pkcs12object encryptedboolean mac_dataobject algorithOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest Array of integer integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantParametersobject (DiscoveryCryptographicMetadataVariantParameters)parametersOneOfDiscoveryParametersMetadataVariantEllipticCurveobject (DiscoveryParametersMetadataVariantEllipticCurve)elliptic_curveOneOfDiscoveryEllipticCurveParamsMetadataVariantNamedCurveobject (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)named_curve Elliptic curves for selected crypto algorithms OneOfstringstringValid values[ "p256" ] stringstringValid values[ "p384" ] stringstringValid values[ "p521" ] stringstringValid values[ "k256" ] stringstringValid values[ "x25519" ] stringstringValid values[ "ed25519" ] stringstringValid values[ "x448" ] stringstringValid values[ "ed448" ] stringstringValid values[ "brainpool_p256r1" ] stringstringValid values[ "brainpool_p384r1" ] stringstringValid values[ "brainpool_p512r1" ] DiscoveryCurveVariantOtherobject (DiscoveryCurveVariantOther)otherstring A catch-all if you really need to accept arbitrary curve names stringstringValid values[ "prime192_v1" ] stringstringValid values[ "prime192_v2" ] stringstringValid values[ "prime192_v3" ] stringstringValid values[ "prime239_v1" ] stringstringValid values[ "prime239_v2" ] stringstringValid values[ "prime239_v3" ] stringstringValid values[ "prime256_v1" ] stringstringValid values[ "ansi_t163_k1" ] stringstringValid values[ "ansi_t163_r1" ] stringstringValid values[ "ansi_t239_k1" ] stringstringValid values[ "sec_t113_r1" ] stringstringValid values[ "sec_t113_r2" ] stringstringValid values[ "sec_p112_r1" ] stringstringValid values[ "sec_p112_r2" ] stringstringValid values[ "ansi_p160_r1" ] stringstringValid values[ "ansi_p160_k1" ] stringstringValid values[ "ansi_p256_k1" ] stringstringValid values[ "ansi_t163_r2" ] stringstringValid values[ "ansi_t283_k1" ] stringstringValid values[ "ansi_t283_r1" ] stringstringValid values[ "sec_t131_r1" ] stringstringValid values[ "sec_t131_r2" ] stringstringValid values[ "ansi_t193_r1" ] stringstringValid values[ "ansi_t193_r2" ] stringstringValid values[ "ansi_t233_k1" ] stringstringValid values[ "ansi_t233_r1" ] stringstringValid values[ "sec_p128_r1" ] stringstringValid values[ "sec_p128_r2" ] stringstringValid values[ "ansi_p160_r2" ] stringstringValid values[ "ansi_p192_k1" ] stringstringValid values[ "ansi_p224_k1" ] stringstringValid values[ "ansi_p224_r1" ] stringstringValid values[ "ansi_p384_r1" ] stringstringValid values[ "ansi_p521_r1" ] stringstringValid values[ "ansi_t409_k1" ] stringstringValid values[ "ansi_t409_r1" ] stringstringValid values[ "ansi_t571_k1" ] stringstringValid values[ "ansi_t571_r1" ] stringstringValid values[ "c2_pnb163_v1" ] stringstringValid values[ "c2_pnb163_v2" ] stringstringValid values[ "c2_pnb163_v3" ] stringstringValid values[ "c2_pnb176_w1" ] stringstringValid values[ "c2_tnb191_v1" ] stringstringValid values[ "c2_tnb191_v2" ] stringstringValid values[ "c2_tnb191_v3" ] stringstringValid values[ "c2_onb191_v4" ] stringstringValid values[ "c2_onb191_v5" ] stringstringValid values[ "c2_pnb208_w1" ] stringstringValid values[ "c2_tnb239_v1" ] stringstringValid values[ "c2_tnb239_v2" ] stringstringValid values[ "c2_tnb239_v3" ] stringstringValid values[ "c2_onb239_v4" ] stringstringValid values[ "c2_onb239_v5" ] stringstringValid values[ "c2_pnb272_w1" ] stringstringValid values[ "c2_pnb304_w1" ] stringstringValid values[ "c2_tnb359_v1" ] stringstringValid values[ "c2_pnb368_w1" ] stringstringValid values[ "c2_tnb431_r1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls3" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls4" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls5" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls6" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls7" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls8" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls9" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls10" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls11" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls12" ] stringstringValid values[ "brainpool_p160_r1" ] stringstringValid values[ "brainpool_p160_t1" ] stringstringValid values[ "brainpool_p192_r1" ] stringstringValid values[ "brainpool_p192_t1" ] stringstringValid values[ "brainpool_p224_r1" ] stringstringValid values[ "brainpool_p224_t1" ] stringstringValid values[ "brainpool_p256_r1" ] stringstringValid values[ "brainpool_p256_t1" ] stringstringValid values[ "brainpool_p320_r1" ] stringstringValid values[ "brainpool_p320_t1" ] stringstringValid values[ "brainpool_p384_r1" ] stringstringValid values[ "brainpool_p384_t1" ] stringstringValid values[ "brainpool_p512_r1" ] stringstringValid values[ "brainpool_p512_t1" ] stringstringValid values[ "implicit_curve" ] stringstringValid values[ "specified_curve" ] DiscoveryParametersMetadataVariantDiffieHellmanobject (DiscoveryParametersMetadataVariantDiffieHellman)diffie_hellmanobject g Array of integer integer Minimum0Maximum255 p Array of integer integer Minimum0Maximum255 q Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantJwt DiscoveryCryptographicMetadataVariantSshobject (DiscoveryCryptographicMetadataVariantSsh)sshOneOfDiscoverySshMetadataVariantOpenSshPublicKeyobject (DiscoverySshMetadataVariantOpenSshPublicKey)open_ssh_public_keyobject commentstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantOpenSshPrivateKeyobject (DiscoverySshMetadataVariantOpenSshPrivateKey)open_ssh_private_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantPuttyKeyobject (DiscoverySshMetadataVariantPuttyKey)putty_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 private_macstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPgpobject (DiscoveryCryptographicMetadataVariantPgp)pgpOneOfDiscoveryPgpMetadataVariantPrivateKeyobject (DiscoveryPgpMetadataVariantPrivateKey)PrivateKeyobject DiscoveryPgpMetadataVariantPublicKeyobject (DiscoveryPgpMetadataVariantPublicKey)PublicKeyobject DiscoveryPgpMetadataVariantMessageobject (DiscoveryPgpMetadataVariantMessage)Messagestring Valid values[ "Literal", "Compressed", "Signed", "SignedOnePass", "Encrypted" ] DiscoveryPgpMetadataVariantSignatureobject (DiscoveryPgpMetadataVariantSignature)Signatureobject DiscoveryCryptographicMetadataVariantMultipleobject (DiscoveryCryptographicMetadataVariantMultiple)multiple Array of object (DiscoveryCryptographicMetadata) This is used if a single file contains multiple crytpogrpahic materials within it. This primarily applies to PEM files, as multiple PEM blocks can be concatenated together without issue. OneOfDiscoveryCryptographicMetadataVariantSymmetricKeyobject (DiscoveryCryptographicMetadataVariantSymmetricKey)symmetric_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPublicKeyobject (DiscoveryCryptographicMetadataVariantPublicKey)public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPrivateKeyobject (DiscoveryCryptographicMetadataVariantPrivateKey)private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantCertificateobject (DiscoveryCryptographicMetadataVariantCertificate)certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger DiscoveryCryptographicMetadataVariantTrustedCertificateobject (DiscoveryCryptographicMetadataVariantTrustedCertificate)trusted_certificateobject certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger extended_usageobject allowed_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found rejected_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found DiscoveryCryptographicMetadataVariantCertificateSigningRequestobject (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)certificate_signing_requestobject pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null property*string additionalProperties DiscoveryCryptographicMetadataVariantCertificateRevocationListobject (DiscoveryCryptographicMetadataVariantCertificateRevocationList)certificate_revocation_listobject issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs7object (DiscoveryCryptographicMetadataVariantPkcs7)pkcs7OneOfDiscoveryPkcs7MetadataVariantDataobject (DiscoveryPkcs7MetadataVariantData)dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedDataobject (DiscoveryPkcs7MetadataVariantSignedData)signed_dataobject certificates Array of object (DiscoveryCertificateMetadata) | null object fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger crls Array of object (DiscoveryCertificateRevocationList) | null object issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest_algorithms Array of object (DiscoveryCryptographicAlgorithm) OneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encapsulated_content_typestring signer_info Array of object (DiscoveryPkcs7SignerInfoMetadata) object digest_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 sidOneOfDiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumberobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)issuer_and_serial_numberobject name Array of string string serial_number Array of integer integer Minimum0Maximum255 DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifierobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)subject_key_identifierobject id Array of integer integer Minimum0Maximum255 signature Array of integer integer Minimum0Maximum255 signature_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signed_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string unsigned_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string versioninteger Minimum0Maximum4294967295 versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEnvelopedDataobject (DiscoveryPkcs7MetadataVariantEnvelopedData)enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedAndEnvelopedDataobject (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)signed_and_enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDigestedDataobject (DiscoveryPkcs7MetadataVariantDigestedData)digested_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedDataobject (DiscoveryPkcs7MetadataVariantEncryptedData)encrypted_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDataWithAttributesobject (DiscoveryPkcs7MetadataVariantDataWithAttributes)data_with_attributesobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfoobject (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)encrypted_private_key_infoobject versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs12object (DiscoveryCryptographicMetadataVariantPkcs12)pkcs12object encryptedboolean mac_dataobject algorithOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest Array of integer integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantParametersobject (DiscoveryCryptographicMetadataVariantParameters)parametersOneOfDiscoveryParametersMetadataVariantEllipticCurveobject (DiscoveryParametersMetadataVariantEllipticCurve)elliptic_curveOneOfDiscoveryEllipticCurveParamsMetadataVariantNamedCurveobject (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)named_curve Elliptic curves for selected crypto algorithms OneOfstringstringValid values[ "p256" ] stringstringValid values[ "p384" ] stringstringValid values[ "p521" ] stringstringValid values[ "k256" ] stringstringValid values[ "x25519" ] stringstringValid values[ "ed25519" ] stringstringValid values[ "x448" ] stringstringValid values[ "ed448" ] stringstringValid values[ "brainpool_p256r1" ] stringstringValid values[ "brainpool_p384r1" ] stringstringValid values[ "brainpool_p512r1" ] DiscoveryCurveVariantOtherobject (DiscoveryCurveVariantOther)otherstring A catch-all if you really need to accept arbitrary curve names stringstringValid values[ "prime192_v1" ] stringstringValid values[ "prime192_v2" ] stringstringValid values[ "prime192_v3" ] stringstringValid values[ "prime239_v1" ] stringstringValid values[ "prime239_v2" ] stringstringValid values[ "prime239_v3" ] stringstringValid values[ "prime256_v1" ] stringstringValid values[ "ansi_t163_k1" ] stringstringValid values[ "ansi_t163_r1" ] stringstringValid values[ "ansi_t239_k1" ] stringstringValid values[ "sec_t113_r1" ] stringstringValid values[ "sec_t113_r2" ] stringstringValid values[ "sec_p112_r1" ] stringstringValid values[ "sec_p112_r2" ] stringstringValid values[ "ansi_p160_r1" ] stringstringValid values[ "ansi_p160_k1" ] stringstringValid values[ "ansi_p256_k1" ] stringstringValid values[ "ansi_t163_r2" ] stringstringValid values[ "ansi_t283_k1" ] stringstringValid values[ "ansi_t283_r1" ] stringstringValid values[ "sec_t131_r1" ] stringstringValid values[ "sec_t131_r2" ] stringstringValid values[ "ansi_t193_r1" ] stringstringValid values[ "ansi_t193_r2" ] stringstringValid values[ "ansi_t233_k1" ] stringstringValid values[ "ansi_t233_r1" ] stringstringValid values[ "sec_p128_r1" ] stringstringValid values[ "sec_p128_r2" ] stringstringValid values[ "ansi_p160_r2" ] stringstringValid values[ "ansi_p192_k1" ] stringstringValid values[ "ansi_p224_k1" ] stringstringValid values[ "ansi_p224_r1" ] stringstringValid values[ "ansi_p384_r1" ] stringstringValid values[ "ansi_p521_r1" ] stringstringValid values[ "ansi_t409_k1" ] stringstringValid values[ "ansi_t409_r1" ] stringstringValid values[ "ansi_t571_k1" ] stringstringValid values[ "ansi_t571_r1" ] stringstringValid values[ "c2_pnb163_v1" ] stringstringValid values[ "c2_pnb163_v2" ] stringstringValid values[ "c2_pnb163_v3" ] stringstringValid values[ "c2_pnb176_w1" ] stringstringValid values[ "c2_tnb191_v1" ] stringstringValid values[ "c2_tnb191_v2" ] stringstringValid values[ "c2_tnb191_v3" ] stringstringValid values[ "c2_onb191_v4" ] stringstringValid values[ "c2_onb191_v5" ] stringstringValid values[ "c2_pnb208_w1" ] stringstringValid values[ "c2_tnb239_v1" ] stringstringValid values[ "c2_tnb239_v2" ] stringstringValid values[ "c2_tnb239_v3" ] stringstringValid values[ "c2_onb239_v4" ] stringstringValid values[ "c2_onb239_v5" ] stringstringValid values[ "c2_pnb272_w1" ] stringstringValid values[ "c2_pnb304_w1" ] stringstringValid values[ "c2_tnb359_v1" ] stringstringValid values[ "c2_pnb368_w1" ] stringstringValid values[ "c2_tnb431_r1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls3" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls4" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls5" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls6" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls7" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls8" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls9" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls10" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls11" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls12" ] stringstringValid values[ "brainpool_p160_r1" ] stringstringValid values[ "brainpool_p160_t1" ] stringstringValid values[ "brainpool_p192_r1" ] stringstringValid values[ "brainpool_p192_t1" ] stringstringValid values[ "brainpool_p224_r1" ] stringstringValid values[ "brainpool_p224_t1" ] stringstringValid values[ "brainpool_p256_r1" ] stringstringValid values[ "brainpool_p256_t1" ] stringstringValid values[ "brainpool_p320_r1" ] stringstringValid values[ "brainpool_p320_t1" ] stringstringValid values[ "brainpool_p384_r1" ] stringstringValid values[ "brainpool_p384_t1" ] stringstringValid values[ "brainpool_p512_r1" ] stringstringValid values[ "brainpool_p512_t1" ] stringstringValid values[ "implicit_curve" ] stringstringValid values[ "specified_curve" ] DiscoveryParametersMetadataVariantDiffieHellmanobject (DiscoveryParametersMetadataVariantDiffieHellman)diffie_hellmanobject g Array of integer integer Minimum0Maximum255 p Array of integer integer Minimum0Maximum255 q Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantJwt DiscoveryCryptographicMetadataVariantSshobject (DiscoveryCryptographicMetadataVariantSsh)sshOneOfDiscoverySshMetadataVariantOpenSshPublicKeyobject (DiscoverySshMetadataVariantOpenSshPublicKey)open_ssh_public_keyobject commentstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantOpenSshPrivateKeyobject (DiscoverySshMetadataVariantOpenSshPrivateKey)open_ssh_private_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantPuttyKeyobject (DiscoverySshMetadataVariantPuttyKey)putty_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 private_macstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPgpobject (DiscoveryCryptographicMetadataVariantPgp)pgpOneOfDiscoveryPgpMetadataVariantPrivateKeyobject (DiscoveryPgpMetadataVariantPrivateKey)PrivateKeyobject DiscoveryPgpMetadataVariantPublicKeyobject (DiscoveryPgpMetadataVariantPublicKey)PublicKeyobject DiscoveryPgpMetadataVariantMessageobject (DiscoveryPgpMetadataVariantMessage)Messagestring Valid values[ "Literal", "Compressed", "Signed", "SignedOnePass", "Encrypted" ] DiscoveryPgpMetadataVariantSignatureobject (DiscoveryPgpMetadataVariantSignature)Signatureobject DiscoveryCryptographicMetadataVariantMultiple jwk_set_urlstring | null key_idstring | null nonce Array of integer | null integer Minimum0Maximum255 token_typestring | null urlstring | null x509_certificate_chain Array of array | null Array of integer integer Minimum0Maximum255 x509_certificate_sha1_thumbprint Array of integer | null integer Minimum0Maximum255 x509_certificate_sha256_thumbprint Array of integer | null integer Minimum0Maximum255 x509_urlstring | null DiscoveryJwtHeaderVariantJweHeaderobject (DiscoveryJwtHeaderVariantJweHeader)jwe_headerobject agreement_partyuinfo Array of integer | null integer Minimum0Maximum255 agreement_partyvinfo Array of integer | null integer Minimum0Maximum255 algorithmstring | null audiencestring | null compressionstring | null content_encryptionstring | null content_typestring | null critical Array of string | null string issuerstring | null jwkOneOfDiscoveryCryptographicMetadataVariantSymmetricKeyobject (DiscoveryCryptographicMetadataVariantSymmetricKey)symmetric_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPublicKeyobject (DiscoveryCryptographicMetadataVariantPublicKey)public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPrivateKeyobject (DiscoveryCryptographicMetadataVariantPrivateKey)private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantCertificateobject (DiscoveryCryptographicMetadataVariantCertificate)certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger DiscoveryCryptographicMetadataVariantTrustedCertificateobject (DiscoveryCryptographicMetadataVariantTrustedCertificate)trusted_certificateobject certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger extended_usageobject allowed_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found rejected_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found DiscoveryCryptographicMetadataVariantCertificateSigningRequestobject (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)certificate_signing_requestobject pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null property*string additionalProperties DiscoveryCryptographicMetadataVariantCertificateRevocationListobject (DiscoveryCryptographicMetadataVariantCertificateRevocationList)certificate_revocation_listobject issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs7object (DiscoveryCryptographicMetadataVariantPkcs7)pkcs7OneOfDiscoveryPkcs7MetadataVariantDataobject (DiscoveryPkcs7MetadataVariantData)dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedDataobject (DiscoveryPkcs7MetadataVariantSignedData)signed_dataobject certificates Array of object (DiscoveryCertificateMetadata) | null object fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger crls Array of object (DiscoveryCertificateRevocationList) | null object issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest_algorithms Array of object (DiscoveryCryptographicAlgorithm) OneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encapsulated_content_typestring signer_info Array of object (DiscoveryPkcs7SignerInfoMetadata) object digest_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 sidOneOfDiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumberobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)issuer_and_serial_numberobject name Array of string string serial_number Array of integer integer Minimum0Maximum255 DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifierobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)subject_key_identifierobject id Array of integer integer Minimum0Maximum255 signature Array of integer integer Minimum0Maximum255 signature_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signed_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string unsigned_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string versioninteger Minimum0Maximum4294967295 versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEnvelopedDataobject (DiscoveryPkcs7MetadataVariantEnvelopedData)enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedAndEnvelopedDataobject (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)signed_and_enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDigestedDataobject (DiscoveryPkcs7MetadataVariantDigestedData)digested_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedDataobject (DiscoveryPkcs7MetadataVariantEncryptedData)encrypted_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDataWithAttributesobject (DiscoveryPkcs7MetadataVariantDataWithAttributes)data_with_attributesobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfoobject (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)encrypted_private_key_infoobject versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs12object (DiscoveryCryptographicMetadataVariantPkcs12)pkcs12object encryptedboolean mac_dataobject algorithOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest Array of integer integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantParametersobject (DiscoveryCryptographicMetadataVariantParameters)parametersOneOfDiscoveryParametersMetadataVariantEllipticCurveobject (DiscoveryParametersMetadataVariantEllipticCurve)elliptic_curveOneOfDiscoveryEllipticCurveParamsMetadataVariantNamedCurveobject (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)named_curve Elliptic curves for selected crypto algorithms OneOfstringstringValid values[ "p256" ] stringstringValid values[ "p384" ] stringstringValid values[ "p521" ] stringstringValid values[ "k256" ] stringstringValid values[ "x25519" ] stringstringValid values[ "ed25519" ] stringstringValid values[ "x448" ] stringstringValid values[ "ed448" ] stringstringValid values[ "brainpool_p256r1" ] stringstringValid values[ "brainpool_p384r1" ] stringstringValid values[ "brainpool_p512r1" ] DiscoveryCurveVariantOtherobject (DiscoveryCurveVariantOther)otherstring A catch-all if you really need to accept arbitrary curve names stringstringValid values[ "prime192_v1" ] stringstringValid values[ "prime192_v2" ] stringstringValid values[ "prime192_v3" ] stringstringValid values[ "prime239_v1" ] stringstringValid values[ "prime239_v2" ] stringstringValid values[ "prime239_v3" ] stringstringValid values[ "prime256_v1" ] stringstringValid values[ "ansi_t163_k1" ] stringstringValid values[ "ansi_t163_r1" ] stringstringValid values[ "ansi_t239_k1" ] stringstringValid values[ "sec_t113_r1" ] stringstringValid values[ "sec_t113_r2" ] stringstringValid values[ "sec_p112_r1" ] stringstringValid values[ "sec_p112_r2" ] stringstringValid values[ "ansi_p160_r1" ] stringstringValid values[ "ansi_p160_k1" ] stringstringValid values[ "ansi_p256_k1" ] stringstringValid values[ "ansi_t163_r2" ] stringstringValid values[ "ansi_t283_k1" ] stringstringValid values[ "ansi_t283_r1" ] stringstringValid values[ "sec_t131_r1" ] stringstringValid values[ "sec_t131_r2" ] stringstringValid values[ "ansi_t193_r1" ] stringstringValid values[ "ansi_t193_r2" ] stringstringValid values[ "ansi_t233_k1" ] stringstringValid values[ "ansi_t233_r1" ] stringstringValid values[ "sec_p128_r1" ] stringstringValid values[ "sec_p128_r2" ] stringstringValid values[ "ansi_p160_r2" ] stringstringValid values[ "ansi_p192_k1" ] stringstringValid values[ "ansi_p224_k1" ] stringstringValid values[ "ansi_p224_r1" ] stringstringValid values[ "ansi_p384_r1" ] stringstringValid values[ "ansi_p521_r1" ] stringstringValid values[ "ansi_t409_k1" ] stringstringValid values[ "ansi_t409_r1" ] stringstringValid values[ "ansi_t571_k1" ] stringstringValid values[ "ansi_t571_r1" ] stringstringValid values[ "c2_pnb163_v1" ] stringstringValid values[ "c2_pnb163_v2" ] stringstringValid values[ "c2_pnb163_v3" ] stringstringValid values[ "c2_pnb176_w1" ] stringstringValid values[ "c2_tnb191_v1" ] stringstringValid values[ "c2_tnb191_v2" ] stringstringValid values[ "c2_tnb191_v3" ] stringstringValid values[ "c2_onb191_v4" ] stringstringValid values[ "c2_onb191_v5" ] stringstringValid values[ "c2_pnb208_w1" ] stringstringValid values[ "c2_tnb239_v1" ] stringstringValid values[ "c2_tnb239_v2" ] stringstringValid values[ "c2_tnb239_v3" ] stringstringValid values[ "c2_onb239_v4" ] stringstringValid values[ "c2_onb239_v5" ] stringstringValid values[ "c2_pnb272_w1" ] stringstringValid values[ "c2_pnb304_w1" ] stringstringValid values[ "c2_tnb359_v1" ] stringstringValid values[ "c2_pnb368_w1" ] stringstringValid values[ "c2_tnb431_r1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls3" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls4" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls5" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls6" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls7" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls8" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls9" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls10" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls11" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls12" ] stringstringValid values[ "brainpool_p160_r1" ] stringstringValid values[ "brainpool_p160_t1" ] stringstringValid values[ "brainpool_p192_r1" ] stringstringValid values[ "brainpool_p192_t1" ] stringstringValid values[ "brainpool_p224_r1" ] stringstringValid values[ "brainpool_p224_t1" ] stringstringValid values[ "brainpool_p256_r1" ] stringstringValid values[ "brainpool_p256_t1" ] stringstringValid values[ "brainpool_p320_r1" ] stringstringValid values[ "brainpool_p320_t1" ] stringstringValid values[ "brainpool_p384_r1" ] stringstringValid values[ "brainpool_p384_t1" ] stringstringValid values[ "brainpool_p512_r1" ] stringstringValid values[ "brainpool_p512_t1" ] stringstringValid values[ "implicit_curve" ] stringstringValid values[ "specified_curve" ] DiscoveryParametersMetadataVariantDiffieHellmanobject (DiscoveryParametersMetadataVariantDiffieHellman)diffie_hellmanobject g Array of integer integer Minimum0Maximum255 p Array of integer integer Minimum0Maximum255 q Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantJwt DiscoveryCryptographicMetadataVariantSshobject (DiscoveryCryptographicMetadataVariantSsh)sshOneOfDiscoverySshMetadataVariantOpenSshPublicKeyobject (DiscoverySshMetadataVariantOpenSshPublicKey)open_ssh_public_keyobject commentstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantOpenSshPrivateKeyobject (DiscoverySshMetadataVariantOpenSshPrivateKey)open_ssh_private_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantPuttyKeyobject (DiscoverySshMetadataVariantPuttyKey)putty_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 private_macstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPgpobject (DiscoveryCryptographicMetadataVariantPgp)pgpOneOfDiscoveryPgpMetadataVariantPrivateKeyobject (DiscoveryPgpMetadataVariantPrivateKey)PrivateKeyobject DiscoveryPgpMetadataVariantPublicKeyobject (DiscoveryPgpMetadataVariantPublicKey)PublicKeyobject DiscoveryPgpMetadataVariantMessageobject (DiscoveryPgpMetadataVariantMessage)Messagestring Valid values[ "Literal", "Compressed", "Signed", "SignedOnePass", "Encrypted" ] DiscoveryPgpMetadataVariantSignatureobject (DiscoveryPgpMetadataVariantSignature)Signatureobject DiscoveryCryptographicMetadataVariantMultipleobject (DiscoveryCryptographicMetadataVariantMultiple)multiple Array of object (DiscoveryCryptographicMetadata) This is used if a single file contains multiple crytpogrpahic materials within it. This primarily applies to PEM files, as multiple PEM blocks can be concatenated together without issue. OneOfDiscoveryCryptographicMetadataVariantSymmetricKeyobject (DiscoveryCryptographicMetadataVariantSymmetricKey)symmetric_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPublicKeyobject (DiscoveryCryptographicMetadataVariantPublicKey)public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPrivateKeyobject (DiscoveryCryptographicMetadataVariantPrivateKey)private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantCertificateobject (DiscoveryCryptographicMetadataVariantCertificate)certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger DiscoveryCryptographicMetadataVariantTrustedCertificateobject (DiscoveryCryptographicMetadataVariantTrustedCertificate)trusted_certificateobject certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger extended_usageobject allowed_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found rejected_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found DiscoveryCryptographicMetadataVariantCertificateSigningRequestobject (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)certificate_signing_requestobject pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null property*string additionalProperties DiscoveryCryptographicMetadataVariantCertificateRevocationListobject (DiscoveryCryptographicMetadataVariantCertificateRevocationList)certificate_revocation_listobject issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs7object (DiscoveryCryptographicMetadataVariantPkcs7)pkcs7OneOfDiscoveryPkcs7MetadataVariantDataobject (DiscoveryPkcs7MetadataVariantData)dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedDataobject (DiscoveryPkcs7MetadataVariantSignedData)signed_dataobject certificates Array of object (DiscoveryCertificateMetadata) | null object fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger crls Array of object (DiscoveryCertificateRevocationList) | null object issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest_algorithms Array of object (DiscoveryCryptographicAlgorithm) OneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encapsulated_content_typestring signer_info Array of object (DiscoveryPkcs7SignerInfoMetadata) object digest_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 sidOneOfDiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumberobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)issuer_and_serial_numberobject name Array of string string serial_number Array of integer integer Minimum0Maximum255 DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifierobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)subject_key_identifierobject id Array of integer integer Minimum0Maximum255 signature Array of integer integer Minimum0Maximum255 signature_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signed_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string unsigned_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string versioninteger Minimum0Maximum4294967295 versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEnvelopedDataobject (DiscoveryPkcs7MetadataVariantEnvelopedData)enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedAndEnvelopedDataobject (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)signed_and_enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDigestedDataobject (DiscoveryPkcs7MetadataVariantDigestedData)digested_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedDataobject (DiscoveryPkcs7MetadataVariantEncryptedData)encrypted_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDataWithAttributesobject (DiscoveryPkcs7MetadataVariantDataWithAttributes)data_with_attributesobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfoobject (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)encrypted_private_key_infoobject versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs12object (DiscoveryCryptographicMetadataVariantPkcs12)pkcs12object encryptedboolean mac_dataobject algorithOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest Array of integer integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantParametersobject (DiscoveryCryptographicMetadataVariantParameters)parametersOneOfDiscoveryParametersMetadataVariantEllipticCurveobject (DiscoveryParametersMetadataVariantEllipticCurve)elliptic_curveOneOfDiscoveryEllipticCurveParamsMetadataVariantNamedCurveobject (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)named_curve Elliptic curves for selected crypto algorithms OneOfstringstringValid values[ "p256" ] stringstringValid values[ "p384" ] stringstringValid values[ "p521" ] stringstringValid values[ "k256" ] stringstringValid values[ "x25519" ] stringstringValid values[ "ed25519" ] stringstringValid values[ "x448" ] stringstringValid values[ "ed448" ] stringstringValid values[ "brainpool_p256r1" ] stringstringValid values[ "brainpool_p384r1" ] stringstringValid values[ "brainpool_p512r1" ] DiscoveryCurveVariantOtherobject (DiscoveryCurveVariantOther)otherstring A catch-all if you really need to accept arbitrary curve names stringstringValid values[ "prime192_v1" ] stringstringValid values[ "prime192_v2" ] stringstringValid values[ "prime192_v3" ] stringstringValid values[ "prime239_v1" ] stringstringValid values[ "prime239_v2" ] stringstringValid values[ "prime239_v3" ] stringstringValid values[ "prime256_v1" ] stringstringValid values[ "ansi_t163_k1" ] stringstringValid values[ "ansi_t163_r1" ] stringstringValid values[ "ansi_t239_k1" ] stringstringValid values[ "sec_t113_r1" ] stringstringValid values[ "sec_t113_r2" ] stringstringValid values[ "sec_p112_r1" ] stringstringValid values[ "sec_p112_r2" ] stringstringValid values[ "ansi_p160_r1" ] stringstringValid values[ "ansi_p160_k1" ] stringstringValid values[ "ansi_p256_k1" ] stringstringValid values[ "ansi_t163_r2" ] stringstringValid values[ "ansi_t283_k1" ] stringstringValid values[ "ansi_t283_r1" ] stringstringValid values[ "sec_t131_r1" ] stringstringValid values[ "sec_t131_r2" ] stringstringValid values[ "ansi_t193_r1" ] stringstringValid values[ "ansi_t193_r2" ] stringstringValid values[ "ansi_t233_k1" ] stringstringValid values[ "ansi_t233_r1" ] stringstringValid values[ "sec_p128_r1" ] stringstringValid values[ "sec_p128_r2" ] stringstringValid values[ "ansi_p160_r2" ] stringstringValid values[ "ansi_p192_k1" ] stringstringValid values[ "ansi_p224_k1" ] stringstringValid values[ "ansi_p224_r1" ] stringstringValid values[ "ansi_p384_r1" ] stringstringValid values[ "ansi_p521_r1" ] stringstringValid values[ "ansi_t409_k1" ] stringstringValid values[ "ansi_t409_r1" ] stringstringValid values[ "ansi_t571_k1" ] stringstringValid values[ "ansi_t571_r1" ] stringstringValid values[ "c2_pnb163_v1" ] stringstringValid values[ "c2_pnb163_v2" ] stringstringValid values[ "c2_pnb163_v3" ] stringstringValid values[ "c2_pnb176_w1" ] stringstringValid values[ "c2_tnb191_v1" ] stringstringValid values[ "c2_tnb191_v2" ] stringstringValid values[ "c2_tnb191_v3" ] stringstringValid values[ "c2_onb191_v4" ] stringstringValid values[ "c2_onb191_v5" ] stringstringValid values[ "c2_pnb208_w1" ] stringstringValid values[ "c2_tnb239_v1" ] stringstringValid values[ "c2_tnb239_v2" ] stringstringValid values[ "c2_tnb239_v3" ] stringstringValid values[ "c2_onb239_v4" ] stringstringValid values[ "c2_onb239_v5" ] stringstringValid values[ "c2_pnb272_w1" ] stringstringValid values[ "c2_pnb304_w1" ] stringstringValid values[ "c2_tnb359_v1" ] stringstringValid values[ "c2_pnb368_w1" ] stringstringValid values[ "c2_tnb431_r1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls3" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls4" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls5" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls6" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls7" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls8" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls9" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls10" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls11" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls12" ] stringstringValid values[ "brainpool_p160_r1" ] stringstringValid values[ "brainpool_p160_t1" ] stringstringValid values[ "brainpool_p192_r1" ] stringstringValid values[ "brainpool_p192_t1" ] stringstringValid values[ "brainpool_p224_r1" ] stringstringValid values[ "brainpool_p224_t1" ] stringstringValid values[ "brainpool_p256_r1" ] stringstringValid values[ "brainpool_p256_t1" ] stringstringValid values[ "brainpool_p320_r1" ] stringstringValid values[ "brainpool_p320_t1" ] stringstringValid values[ "brainpool_p384_r1" ] stringstringValid values[ "brainpool_p384_t1" ] stringstringValid values[ "brainpool_p512_r1" ] stringstringValid values[ "brainpool_p512_t1" ] stringstringValid values[ "implicit_curve" ] stringstringValid values[ "specified_curve" ] DiscoveryParametersMetadataVariantDiffieHellmanobject (DiscoveryParametersMetadataVariantDiffieHellman)diffie_hellmanobject g Array of integer integer Minimum0Maximum255 p Array of integer integer Minimum0Maximum255 q Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantJwt DiscoveryCryptographicMetadataVariantSshobject (DiscoveryCryptographicMetadataVariantSsh)sshOneOfDiscoverySshMetadataVariantOpenSshPublicKeyobject (DiscoverySshMetadataVariantOpenSshPublicKey)open_ssh_public_keyobject commentstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantOpenSshPrivateKeyobject (DiscoverySshMetadataVariantOpenSshPrivateKey)open_ssh_private_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantPuttyKeyobject (DiscoverySshMetadataVariantPuttyKey)putty_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 private_macstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPgpobject (DiscoveryCryptographicMetadataVariantPgp)pgpOneOfDiscoveryPgpMetadataVariantPrivateKeyobject (DiscoveryPgpMetadataVariantPrivateKey)PrivateKeyobject DiscoveryPgpMetadataVariantPublicKeyobject (DiscoveryPgpMetadataVariantPublicKey)PublicKeyobject DiscoveryPgpMetadataVariantMessageobject (DiscoveryPgpMetadataVariantMessage)Messagestring Valid values[ "Literal", "Compressed", "Signed", "SignedOnePass", "Encrypted" ] DiscoveryPgpMetadataVariantSignatureobject (DiscoveryPgpMetadataVariantSignature)Signatureobject DiscoveryCryptographicMetadataVariantMultiple jwk_set_urlstring | null key_idstring | null nonce Array of integer | null integer Minimum0Maximum255 subjectstring | null token_typestring | null urlstring | null x509_certificate_chain Array of array | null Array of integer integer Minimum0Maximum255 x509_certificate_sha1_thumbprint Array of integer | null integer Minimum0Maximum255 x509_certificate_sha256_thumbprint Array of integer | null integer Minimum0Maximum255 x509_urlstring | null DiscoveryJwtHeaderVariantProtectedJweHeaderobject (DiscoveryJwtHeaderVariantProtectedJweHeader)protected_jwe_headerobject agreement_partyuinfo Array of integer | null integer Minimum0Maximum255 agreement_partyvinfo Array of integer | null integer Minimum0Maximum255 algorithmstring | null audiencestring | null compressionstring | null content_encryptionstring | null content_typestring | null critical Array of string | null string issuerstring | null jwkOneOfDiscoveryCryptographicMetadataVariantSymmetricKeyobject (DiscoveryCryptographicMetadataVariantSymmetricKey)symmetric_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPublicKeyobject (DiscoveryCryptographicMetadataVariantPublicKey)public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPrivateKeyobject (DiscoveryCryptographicMetadataVariantPrivateKey)private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantCertificateobject (DiscoveryCryptographicMetadataVariantCertificate)certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger DiscoveryCryptographicMetadataVariantTrustedCertificateobject (DiscoveryCryptographicMetadataVariantTrustedCertificate)trusted_certificateobject certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger extended_usageobject allowed_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found rejected_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found DiscoveryCryptographicMetadataVariantCertificateSigningRequestobject (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)certificate_signing_requestobject pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null property*string additionalProperties DiscoveryCryptographicMetadataVariantCertificateRevocationListobject (DiscoveryCryptographicMetadataVariantCertificateRevocationList)certificate_revocation_listobject issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs7object (DiscoveryCryptographicMetadataVariantPkcs7)pkcs7OneOfDiscoveryPkcs7MetadataVariantDataobject (DiscoveryPkcs7MetadataVariantData)dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedDataobject (DiscoveryPkcs7MetadataVariantSignedData)signed_dataobject certificates Array of object (DiscoveryCertificateMetadata) | null object fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger crls Array of object (DiscoveryCertificateRevocationList) | null object issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest_algorithms Array of object (DiscoveryCryptographicAlgorithm) OneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encapsulated_content_typestring signer_info Array of object (DiscoveryPkcs7SignerInfoMetadata) object digest_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 sidOneOfDiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumberobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)issuer_and_serial_numberobject name Array of string string serial_number Array of integer integer Minimum0Maximum255 DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifierobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)subject_key_identifierobject id Array of integer integer Minimum0Maximum255 signature Array of integer integer Minimum0Maximum255 signature_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signed_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string unsigned_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string versioninteger Minimum0Maximum4294967295 versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEnvelopedDataobject (DiscoveryPkcs7MetadataVariantEnvelopedData)enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedAndEnvelopedDataobject (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)signed_and_enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDigestedDataobject (DiscoveryPkcs7MetadataVariantDigestedData)digested_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedDataobject (DiscoveryPkcs7MetadataVariantEncryptedData)encrypted_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDataWithAttributesobject (DiscoveryPkcs7MetadataVariantDataWithAttributes)data_with_attributesobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfoobject (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)encrypted_private_key_infoobject versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs12object (DiscoveryCryptographicMetadataVariantPkcs12)pkcs12object encryptedboolean mac_dataobject algorithOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest Array of integer integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantParametersobject (DiscoveryCryptographicMetadataVariantParameters)parametersOneOfDiscoveryParametersMetadataVariantEllipticCurveobject (DiscoveryParametersMetadataVariantEllipticCurve)elliptic_curveOneOfDiscoveryEllipticCurveParamsMetadataVariantNamedCurveobject (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)named_curve Elliptic curves for selected crypto algorithms OneOfstringstringValid values[ "p256" ] stringstringValid values[ "p384" ] stringstringValid values[ "p521" ] stringstringValid values[ "k256" ] stringstringValid values[ "x25519" ] stringstringValid values[ "ed25519" ] stringstringValid values[ "x448" ] stringstringValid values[ "ed448" ] stringstringValid values[ "brainpool_p256r1" ] stringstringValid values[ "brainpool_p384r1" ] stringstringValid values[ "brainpool_p512r1" ] DiscoveryCurveVariantOtherobject (DiscoveryCurveVariantOther)otherstring A catch-all if you really need to accept arbitrary curve names stringstringValid values[ "prime192_v1" ] stringstringValid values[ "prime192_v2" ] stringstringValid values[ "prime192_v3" ] stringstringValid values[ "prime239_v1" ] stringstringValid values[ "prime239_v2" ] stringstringValid values[ "prime239_v3" ] stringstringValid values[ "prime256_v1" ] stringstringValid values[ "ansi_t163_k1" ] stringstringValid values[ "ansi_t163_r1" ] stringstringValid values[ "ansi_t239_k1" ] stringstringValid values[ "sec_t113_r1" ] stringstringValid values[ "sec_t113_r2" ] stringstringValid values[ "sec_p112_r1" ] stringstringValid values[ "sec_p112_r2" ] stringstringValid values[ "ansi_p160_r1" ] stringstringValid values[ "ansi_p160_k1" ] stringstringValid values[ "ansi_p256_k1" ] stringstringValid values[ "ansi_t163_r2" ] stringstringValid values[ "ansi_t283_k1" ] stringstringValid values[ "ansi_t283_r1" ] stringstringValid values[ "sec_t131_r1" ] stringstringValid values[ "sec_t131_r2" ] stringstringValid values[ "ansi_t193_r1" ] stringstringValid values[ "ansi_t193_r2" ] stringstringValid values[ "ansi_t233_k1" ] stringstringValid values[ "ansi_t233_r1" ] stringstringValid values[ "sec_p128_r1" ] stringstringValid values[ "sec_p128_r2" ] stringstringValid values[ "ansi_p160_r2" ] stringstringValid values[ "ansi_p192_k1" ] stringstringValid values[ "ansi_p224_k1" ] stringstringValid values[ "ansi_p224_r1" ] stringstringValid values[ "ansi_p384_r1" ] stringstringValid values[ "ansi_p521_r1" ] stringstringValid values[ "ansi_t409_k1" ] stringstringValid values[ "ansi_t409_r1" ] stringstringValid values[ "ansi_t571_k1" ] stringstringValid values[ "ansi_t571_r1" ] stringstringValid values[ "c2_pnb163_v1" ] stringstringValid values[ "c2_pnb163_v2" ] stringstringValid values[ "c2_pnb163_v3" ] stringstringValid values[ "c2_pnb176_w1" ] stringstringValid values[ "c2_tnb191_v1" ] stringstringValid values[ "c2_tnb191_v2" ] stringstringValid values[ "c2_tnb191_v3" ] stringstringValid values[ "c2_onb191_v4" ] stringstringValid values[ "c2_onb191_v5" ] stringstringValid values[ "c2_pnb208_w1" ] stringstringValid values[ "c2_tnb239_v1" ] stringstringValid values[ "c2_tnb239_v2" ] stringstringValid values[ "c2_tnb239_v3" ] stringstringValid values[ "c2_onb239_v4" ] stringstringValid values[ "c2_onb239_v5" ] stringstringValid values[ "c2_pnb272_w1" ] stringstringValid values[ "c2_pnb304_w1" ] stringstringValid values[ "c2_tnb359_v1" ] stringstringValid values[ "c2_pnb368_w1" ] stringstringValid values[ "c2_tnb431_r1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls3" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls4" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls5" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls6" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls7" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls8" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls9" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls10" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls11" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls12" ] stringstringValid values[ "brainpool_p160_r1" ] stringstringValid values[ "brainpool_p160_t1" ] stringstringValid values[ "brainpool_p192_r1" ] stringstringValid values[ "brainpool_p192_t1" ] stringstringValid values[ "brainpool_p224_r1" ] stringstringValid values[ "brainpool_p224_t1" ] stringstringValid values[ "brainpool_p256_r1" ] stringstringValid values[ "brainpool_p256_t1" ] stringstringValid values[ "brainpool_p320_r1" ] stringstringValid values[ "brainpool_p320_t1" ] stringstringValid values[ "brainpool_p384_r1" ] stringstringValid values[ "brainpool_p384_t1" ] stringstringValid values[ "brainpool_p512_r1" ] stringstringValid values[ "brainpool_p512_t1" ] stringstringValid values[ "implicit_curve" ] stringstringValid values[ "specified_curve" ] DiscoveryParametersMetadataVariantDiffieHellmanobject (DiscoveryParametersMetadataVariantDiffieHellman)diffie_hellmanobject g Array of integer integer Minimum0Maximum255 p Array of integer integer Minimum0Maximum255 q Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantJwt DiscoveryCryptographicMetadataVariantSshobject (DiscoveryCryptographicMetadataVariantSsh)sshOneOfDiscoverySshMetadataVariantOpenSshPublicKeyobject (DiscoverySshMetadataVariantOpenSshPublicKey)open_ssh_public_keyobject commentstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantOpenSshPrivateKeyobject (DiscoverySshMetadataVariantOpenSshPrivateKey)open_ssh_private_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantPuttyKeyobject (DiscoverySshMetadataVariantPuttyKey)putty_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 private_macstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPgpobject (DiscoveryCryptographicMetadataVariantPgp)pgpOneOfDiscoveryPgpMetadataVariantPrivateKeyobject (DiscoveryPgpMetadataVariantPrivateKey)PrivateKeyobject DiscoveryPgpMetadataVariantPublicKeyobject (DiscoveryPgpMetadataVariantPublicKey)PublicKeyobject DiscoveryPgpMetadataVariantMessageobject (DiscoveryPgpMetadataVariantMessage)Messagestring Valid values[ "Literal", "Compressed", "Signed", "SignedOnePass", "Encrypted" ] DiscoveryPgpMetadataVariantSignatureobject (DiscoveryPgpMetadataVariantSignature)Signatureobject DiscoveryCryptographicMetadataVariantMultipleobject (DiscoveryCryptographicMetadataVariantMultiple)multiple Array of object (DiscoveryCryptographicMetadata) This is used if a single file contains multiple crytpogrpahic materials within it. This primarily applies to PEM files, as multiple PEM blocks can be concatenated together without issue. OneOfDiscoveryCryptographicMetadataVariantSymmetricKeyobject (DiscoveryCryptographicMetadataVariantSymmetricKey)symmetric_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPublicKeyobject (DiscoveryCryptographicMetadataVariantPublicKey)public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPrivateKeyobject (DiscoveryCryptographicMetadataVariantPrivateKey)private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantCertificateobject (DiscoveryCryptographicMetadataVariantCertificate)certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger DiscoveryCryptographicMetadataVariantTrustedCertificateobject (DiscoveryCryptographicMetadataVariantTrustedCertificate)trusted_certificateobject certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger extended_usageobject allowed_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found rejected_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found DiscoveryCryptographicMetadataVariantCertificateSigningRequestobject (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)certificate_signing_requestobject pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null property*string additionalProperties DiscoveryCryptographicMetadataVariantCertificateRevocationListobject (DiscoveryCryptographicMetadataVariantCertificateRevocationList)certificate_revocation_listobject issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs7object (DiscoveryCryptographicMetadataVariantPkcs7)pkcs7OneOfDiscoveryPkcs7MetadataVariantDataobject (DiscoveryPkcs7MetadataVariantData)dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedDataobject (DiscoveryPkcs7MetadataVariantSignedData)signed_dataobject certificates Array of object (DiscoveryCertificateMetadata) | null object fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger crls Array of object (DiscoveryCertificateRevocationList) | null object issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest_algorithms Array of object (DiscoveryCryptographicAlgorithm) OneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encapsulated_content_typestring signer_info Array of object (DiscoveryPkcs7SignerInfoMetadata) object digest_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 sidOneOfDiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumberobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)issuer_and_serial_numberobject name Array of string string serial_number Array of integer integer Minimum0Maximum255 DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifierobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)subject_key_identifierobject id Array of integer integer Minimum0Maximum255 signature Array of integer integer Minimum0Maximum255 signature_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signed_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string unsigned_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string versioninteger Minimum0Maximum4294967295 versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEnvelopedDataobject (DiscoveryPkcs7MetadataVariantEnvelopedData)enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedAndEnvelopedDataobject (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)signed_and_enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDigestedDataobject (DiscoveryPkcs7MetadataVariantDigestedData)digested_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedDataobject (DiscoveryPkcs7MetadataVariantEncryptedData)encrypted_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDataWithAttributesobject (DiscoveryPkcs7MetadataVariantDataWithAttributes)data_with_attributesobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfoobject (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)encrypted_private_key_infoobject versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs12object (DiscoveryCryptographicMetadataVariantPkcs12)pkcs12object encryptedboolean mac_dataobject algorithOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest Array of integer integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantParametersobject (DiscoveryCryptographicMetadataVariantParameters)parametersOneOfDiscoveryParametersMetadataVariantEllipticCurveobject (DiscoveryParametersMetadataVariantEllipticCurve)elliptic_curveOneOfDiscoveryEllipticCurveParamsMetadataVariantNamedCurveobject (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)named_curve Elliptic curves for selected crypto algorithms OneOfstringstringValid values[ "p256" ] stringstringValid values[ "p384" ] stringstringValid values[ "p521" ] stringstringValid values[ "k256" ] stringstringValid values[ "x25519" ] stringstringValid values[ "ed25519" ] stringstringValid values[ "x448" ] stringstringValid values[ "ed448" ] stringstringValid values[ "brainpool_p256r1" ] stringstringValid values[ "brainpool_p384r1" ] stringstringValid values[ "brainpool_p512r1" ] DiscoveryCurveVariantOtherobject (DiscoveryCurveVariantOther)otherstring A catch-all if you really need to accept arbitrary curve names stringstringValid values[ "prime192_v1" ] stringstringValid values[ "prime192_v2" ] stringstringValid values[ "prime192_v3" ] stringstringValid values[ "prime239_v1" ] stringstringValid values[ "prime239_v2" ] stringstringValid values[ "prime239_v3" ] stringstringValid values[ "prime256_v1" ] stringstringValid values[ "ansi_t163_k1" ] stringstringValid values[ "ansi_t163_r1" ] stringstringValid values[ "ansi_t239_k1" ] stringstringValid values[ "sec_t113_r1" ] stringstringValid values[ "sec_t113_r2" ] stringstringValid values[ "sec_p112_r1" ] stringstringValid values[ "sec_p112_r2" ] stringstringValid values[ "ansi_p160_r1" ] stringstringValid values[ "ansi_p160_k1" ] stringstringValid values[ "ansi_p256_k1" ] stringstringValid values[ "ansi_t163_r2" ] stringstringValid values[ "ansi_t283_k1" ] stringstringValid values[ "ansi_t283_r1" ] stringstringValid values[ "sec_t131_r1" ] stringstringValid values[ "sec_t131_r2" ] stringstringValid values[ "ansi_t193_r1" ] stringstringValid values[ "ansi_t193_r2" ] stringstringValid values[ "ansi_t233_k1" ] stringstringValid values[ "ansi_t233_r1" ] stringstringValid values[ "sec_p128_r1" ] stringstringValid values[ "sec_p128_r2" ] stringstringValid values[ "ansi_p160_r2" ] stringstringValid values[ "ansi_p192_k1" ] stringstringValid values[ "ansi_p224_k1" ] stringstringValid values[ "ansi_p224_r1" ] stringstringValid values[ "ansi_p384_r1" ] stringstringValid values[ "ansi_p521_r1" ] stringstringValid values[ "ansi_t409_k1" ] stringstringValid values[ "ansi_t409_r1" ] stringstringValid values[ "ansi_t571_k1" ] stringstringValid values[ "ansi_t571_r1" ] stringstringValid values[ "c2_pnb163_v1" ] stringstringValid values[ "c2_pnb163_v2" ] stringstringValid values[ "c2_pnb163_v3" ] stringstringValid values[ "c2_pnb176_w1" ] stringstringValid values[ "c2_tnb191_v1" ] stringstringValid values[ "c2_tnb191_v2" ] stringstringValid values[ "c2_tnb191_v3" ] stringstringValid values[ "c2_onb191_v4" ] stringstringValid values[ "c2_onb191_v5" ] stringstringValid values[ "c2_pnb208_w1" ] stringstringValid values[ "c2_tnb239_v1" ] stringstringValid values[ "c2_tnb239_v2" ] stringstringValid values[ "c2_tnb239_v3" ] stringstringValid values[ "c2_onb239_v4" ] stringstringValid values[ "c2_onb239_v5" ] stringstringValid values[ "c2_pnb272_w1" ] stringstringValid values[ "c2_pnb304_w1" ] stringstringValid values[ "c2_tnb359_v1" ] stringstringValid values[ "c2_pnb368_w1" ] stringstringValid values[ "c2_tnb431_r1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls3" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls4" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls5" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls6" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls7" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls8" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls9" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls10" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls11" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls12" ] stringstringValid values[ "brainpool_p160_r1" ] stringstringValid values[ "brainpool_p160_t1" ] stringstringValid values[ "brainpool_p192_r1" ] stringstringValid values[ "brainpool_p192_t1" ] stringstringValid values[ "brainpool_p224_r1" ] stringstringValid values[ "brainpool_p224_t1" ] stringstringValid values[ "brainpool_p256_r1" ] stringstringValid values[ "brainpool_p256_t1" ] stringstringValid values[ "brainpool_p320_r1" ] stringstringValid values[ "brainpool_p320_t1" ] stringstringValid values[ "brainpool_p384_r1" ] stringstringValid values[ "brainpool_p384_t1" ] stringstringValid values[ "brainpool_p512_r1" ] stringstringValid values[ "brainpool_p512_t1" ] stringstringValid values[ "implicit_curve" ] stringstringValid values[ "specified_curve" ] DiscoveryParametersMetadataVariantDiffieHellmanobject (DiscoveryParametersMetadataVariantDiffieHellman)diffie_hellmanobject g Array of integer integer Minimum0Maximum255 p Array of integer integer Minimum0Maximum255 q Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantJwt DiscoveryCryptographicMetadataVariantSshobject (DiscoveryCryptographicMetadataVariantSsh)sshOneOfDiscoverySshMetadataVariantOpenSshPublicKeyobject (DiscoverySshMetadataVariantOpenSshPublicKey)open_ssh_public_keyobject commentstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantOpenSshPrivateKeyobject (DiscoverySshMetadataVariantOpenSshPrivateKey)open_ssh_private_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantPuttyKeyobject (DiscoverySshMetadataVariantPuttyKey)putty_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 private_macstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPgpobject (DiscoveryCryptographicMetadataVariantPgp)pgpOneOfDiscoveryPgpMetadataVariantPrivateKeyobject (DiscoveryPgpMetadataVariantPrivateKey)PrivateKeyobject DiscoveryPgpMetadataVariantPublicKeyobject (DiscoveryPgpMetadataVariantPublicKey)PublicKeyobject DiscoveryPgpMetadataVariantMessageobject (DiscoveryPgpMetadataVariantMessage)Messagestring Valid values[ "Literal", "Compressed", "Signed", "SignedOnePass", "Encrypted" ] DiscoveryPgpMetadataVariantSignatureobject (DiscoveryPgpMetadataVariantSignature)Signatureobject DiscoveryCryptographicMetadataVariantMultiple jwk_set_urlstring | null key_idstring | null nonce Array of integer | null integer Minimum0Maximum255 subjectstring | null token_typestring | null urlstring | null x509_certificate_chain Array of array | null Array of integer integer Minimum0Maximum255 x509_certificate_sha1_thumbprint Array of integer | null integer Minimum0Maximum255 x509_certificate_sha256_thumbprint Array of integer | null integer Minimum0Maximum255 x509_urlstring | null signature Array of integer integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantSshobject (DiscoveryCryptographicMetadataVariantSsh)sshOneOfDiscoverySshMetadataVariantOpenSshPublicKeyobject (DiscoverySshMetadataVariantOpenSshPublicKey)open_ssh_public_keyobject commentstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantOpenSshPrivateKeyobject (DiscoverySshMetadataVariantOpenSshPrivateKey)open_ssh_private_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantPuttyKeyobject (DiscoverySshMetadataVariantPuttyKey)putty_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 private_macstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPgpobject (DiscoveryCryptographicMetadataVariantPgp)pgpOneOfDiscoveryPgpMetadataVariantPrivateKeyobject (DiscoveryPgpMetadataVariantPrivateKey)PrivateKeyobject DiscoveryPgpMetadataVariantPublicKeyobject (DiscoveryPgpMetadataVariantPublicKey)PublicKeyobject DiscoveryPgpMetadataVariantMessageobject (DiscoveryPgpMetadataVariantMessage)Messagestring Valid values[ "Literal", "Compressed", "Signed", "SignedOnePass", "Encrypted" ] DiscoveryPgpMetadataVariantSignatureobject (DiscoveryPgpMetadataVariantSignature)Signatureobject DiscoveryCryptographicMetadataVariantMultipleobject (DiscoveryCryptographicMetadataVariantMultiple)multiple Array of object (DiscoveryCryptographicMetadata) This is used if a single file contains multiple crytpogrpahic materials within it. This primarily applies to PEM files, as multiple PEM blocks can be concatenated together without issue. OneOfDiscoveryCryptographicMetadataVariantSymmetricKeyobject (DiscoveryCryptographicMetadataVariantSymmetricKey)symmetric_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPublicKeyobject (DiscoveryCryptographicMetadataVariantPublicKey)public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPrivateKeyobject (DiscoveryCryptographicMetadataVariantPrivateKey)private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantCertificateobject (DiscoveryCryptographicMetadataVariantCertificate)certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger DiscoveryCryptographicMetadataVariantTrustedCertificateobject (DiscoveryCryptographicMetadataVariantTrustedCertificate)trusted_certificateobject certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger extended_usageobject allowed_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found rejected_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found DiscoveryCryptographicMetadataVariantCertificateSigningRequestobject (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)certificate_signing_requestobject pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null property*string additionalProperties DiscoveryCryptographicMetadataVariantCertificateRevocationListobject (DiscoveryCryptographicMetadataVariantCertificateRevocationList)certificate_revocation_listobject issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs7object (DiscoveryCryptographicMetadataVariantPkcs7)pkcs7OneOfDiscoveryPkcs7MetadataVariantDataobject (DiscoveryPkcs7MetadataVariantData)dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedDataobject (DiscoveryPkcs7MetadataVariantSignedData)signed_dataobject certificates Array of object (DiscoveryCertificateMetadata) | null object fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger crls Array of object (DiscoveryCertificateRevocationList) | null object issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest_algorithms Array of object (DiscoveryCryptographicAlgorithm) OneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encapsulated_content_typestring signer_info Array of object (DiscoveryPkcs7SignerInfoMetadata) object digest_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 sidOneOfDiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumberobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)issuer_and_serial_numberobject name Array of string string serial_number Array of integer integer Minimum0Maximum255 DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifierobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)subject_key_identifierobject id Array of integer integer Minimum0Maximum255 signature Array of integer integer Minimum0Maximum255 signature_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signed_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string unsigned_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string versioninteger Minimum0Maximum4294967295 versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEnvelopedDataobject (DiscoveryPkcs7MetadataVariantEnvelopedData)enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedAndEnvelopedDataobject (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)signed_and_enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDigestedDataobject (DiscoveryPkcs7MetadataVariantDigestedData)digested_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedDataobject (DiscoveryPkcs7MetadataVariantEncryptedData)encrypted_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDataWithAttributesobject (DiscoveryPkcs7MetadataVariantDataWithAttributes)data_with_attributesobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfoobject (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)encrypted_private_key_infoobject versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs12object (DiscoveryCryptographicMetadataVariantPkcs12)pkcs12object encryptedboolean mac_dataobject algorithOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest Array of integer integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantParametersobject (DiscoveryCryptographicMetadataVariantParameters)parametersOneOfDiscoveryParametersMetadataVariantEllipticCurveobject (DiscoveryParametersMetadataVariantEllipticCurve)elliptic_curveOneOfDiscoveryEllipticCurveParamsMetadataVariantNamedCurveobject (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)named_curve Elliptic curves for selected crypto algorithms OneOfstringstringValid values[ "p256" ] stringstringValid values[ "p384" ] stringstringValid values[ "p521" ] stringstringValid values[ "k256" ] stringstringValid values[ "x25519" ] stringstringValid values[ "ed25519" ] stringstringValid values[ "x448" ] stringstringValid values[ "ed448" ] stringstringValid values[ "brainpool_p256r1" ] stringstringValid values[ "brainpool_p384r1" ] stringstringValid values[ "brainpool_p512r1" ] DiscoveryCurveVariantOtherobject (DiscoveryCurveVariantOther)otherstring A catch-all if you really need to accept arbitrary curve names stringstringValid values[ "prime192_v1" ] stringstringValid values[ "prime192_v2" ] stringstringValid values[ "prime192_v3" ] stringstringValid values[ "prime239_v1" ] stringstringValid values[ "prime239_v2" ] stringstringValid values[ "prime239_v3" ] stringstringValid values[ "prime256_v1" ] stringstringValid values[ "ansi_t163_k1" ] stringstringValid values[ "ansi_t163_r1" ] stringstringValid values[ "ansi_t239_k1" ] stringstringValid values[ "sec_t113_r1" ] stringstringValid values[ "sec_t113_r2" ] stringstringValid values[ "sec_p112_r1" ] stringstringValid values[ "sec_p112_r2" ] stringstringValid values[ "ansi_p160_r1" ] stringstringValid values[ "ansi_p160_k1" ] stringstringValid values[ "ansi_p256_k1" ] stringstringValid values[ "ansi_t163_r2" ] stringstringValid values[ "ansi_t283_k1" ] stringstringValid values[ "ansi_t283_r1" ] stringstringValid values[ "sec_t131_r1" ] stringstringValid values[ "sec_t131_r2" ] stringstringValid values[ "ansi_t193_r1" ] stringstringValid values[ "ansi_t193_r2" ] stringstringValid values[ "ansi_t233_k1" ] stringstringValid values[ "ansi_t233_r1" ] stringstringValid values[ "sec_p128_r1" ] stringstringValid values[ "sec_p128_r2" ] stringstringValid values[ "ansi_p160_r2" ] stringstringValid values[ "ansi_p192_k1" ] stringstringValid values[ "ansi_p224_k1" ] stringstringValid values[ "ansi_p224_r1" ] stringstringValid values[ "ansi_p384_r1" ] stringstringValid values[ "ansi_p521_r1" ] stringstringValid values[ "ansi_t409_k1" ] stringstringValid values[ "ansi_t409_r1" ] stringstringValid values[ "ansi_t571_k1" ] stringstringValid values[ "ansi_t571_r1" ] stringstringValid values[ "c2_pnb163_v1" ] stringstringValid values[ "c2_pnb163_v2" ] stringstringValid values[ "c2_pnb163_v3" ] stringstringValid values[ "c2_pnb176_w1" ] stringstringValid values[ "c2_tnb191_v1" ] stringstringValid values[ "c2_tnb191_v2" ] stringstringValid values[ "c2_tnb191_v3" ] stringstringValid values[ "c2_onb191_v4" ] stringstringValid values[ "c2_onb191_v5" ] stringstringValid values[ "c2_pnb208_w1" ] stringstringValid values[ "c2_tnb239_v1" ] stringstringValid values[ "c2_tnb239_v2" ] stringstringValid values[ "c2_tnb239_v3" ] stringstringValid values[ "c2_onb239_v4" ] stringstringValid values[ "c2_onb239_v5" ] stringstringValid values[ "c2_pnb272_w1" ] stringstringValid values[ "c2_pnb304_w1" ] stringstringValid values[ "c2_tnb359_v1" ] stringstringValid values[ "c2_pnb368_w1" ] stringstringValid values[ "c2_tnb431_r1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls3" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls4" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls5" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls6" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls7" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls8" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls9" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls10" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls11" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls12" ] stringstringValid values[ "brainpool_p160_r1" ] stringstringValid values[ "brainpool_p160_t1" ] stringstringValid values[ "brainpool_p192_r1" ] stringstringValid values[ "brainpool_p192_t1" ] stringstringValid values[ "brainpool_p224_r1" ] stringstringValid values[ "brainpool_p224_t1" ] stringstringValid values[ "brainpool_p256_r1" ] stringstringValid values[ "brainpool_p256_t1" ] stringstringValid values[ "brainpool_p320_r1" ] stringstringValid values[ "brainpool_p320_t1" ] stringstringValid values[ "brainpool_p384_r1" ] stringstringValid values[ "brainpool_p384_t1" ] stringstringValid values[ "brainpool_p512_r1" ] stringstringValid values[ "brainpool_p512_t1" ] stringstringValid values[ "implicit_curve" ] stringstringValid values[ "specified_curve" ] DiscoveryParametersMetadataVariantDiffieHellmanobject (DiscoveryParametersMetadataVariantDiffieHellman)diffie_hellmanobject g Array of integer integer Minimum0Maximum255 p Array of integer integer Minimum0Maximum255 q Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantJwtobject (DiscoveryCryptographicMetadataVariantJwt)jwtobject headerOneOfDiscoveryJwtHeaderVariantJwsHeaderobject (DiscoveryJwtHeaderVariantJwsHeader)jws_headerobject algorithmstring | null content_typestring | null critical Array of string | null string jwkOneOfDiscoveryCryptographicMetadataVariantSymmetricKeyobject (DiscoveryCryptographicMetadataVariantSymmetricKey)symmetric_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPublicKeyobject (DiscoveryCryptographicMetadataVariantPublicKey)public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPrivateKeyobject (DiscoveryCryptographicMetadataVariantPrivateKey)private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantCertificateobject (DiscoveryCryptographicMetadataVariantCertificate)certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger DiscoveryCryptographicMetadataVariantTrustedCertificateobject (DiscoveryCryptographicMetadataVariantTrustedCertificate)trusted_certificateobject certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger extended_usageobject allowed_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found rejected_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found DiscoveryCryptographicMetadataVariantCertificateSigningRequestobject (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)certificate_signing_requestobject pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null property*string additionalProperties DiscoveryCryptographicMetadataVariantCertificateRevocationListobject (DiscoveryCryptographicMetadataVariantCertificateRevocationList)certificate_revocation_listobject issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs7object (DiscoveryCryptographicMetadataVariantPkcs7)pkcs7OneOfDiscoveryPkcs7MetadataVariantDataobject (DiscoveryPkcs7MetadataVariantData)dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedDataobject (DiscoveryPkcs7MetadataVariantSignedData)signed_dataobject certificates Array of object (DiscoveryCertificateMetadata) | null object fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger crls Array of object (DiscoveryCertificateRevocationList) | null object issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest_algorithms Array of object (DiscoveryCryptographicAlgorithm) OneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encapsulated_content_typestring signer_info Array of object (DiscoveryPkcs7SignerInfoMetadata) object digest_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 sidOneOfDiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumberobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)issuer_and_serial_numberobject name Array of string string serial_number Array of integer integer Minimum0Maximum255 DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifierobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)subject_key_identifierobject id Array of integer integer Minimum0Maximum255 signature Array of integer integer Minimum0Maximum255 signature_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signed_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string unsigned_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string versioninteger Minimum0Maximum4294967295 versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEnvelopedDataobject (DiscoveryPkcs7MetadataVariantEnvelopedData)enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedAndEnvelopedDataobject (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)signed_and_enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDigestedDataobject (DiscoveryPkcs7MetadataVariantDigestedData)digested_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedDataobject (DiscoveryPkcs7MetadataVariantEncryptedData)encrypted_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDataWithAttributesobject (DiscoveryPkcs7MetadataVariantDataWithAttributes)data_with_attributesobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfoobject (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)encrypted_private_key_infoobject versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs12object (DiscoveryCryptographicMetadataVariantPkcs12)pkcs12object encryptedboolean mac_dataobject algorithOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest Array of integer integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantParametersobject (DiscoveryCryptographicMetadataVariantParameters)parametersOneOfDiscoveryParametersMetadataVariantEllipticCurveobject (DiscoveryParametersMetadataVariantEllipticCurve)elliptic_curveOneOfDiscoveryEllipticCurveParamsMetadataVariantNamedCurveobject (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)named_curve Elliptic curves for selected crypto algorithms OneOfstringstringValid values[ "p256" ] stringstringValid values[ "p384" ] stringstringValid values[ "p521" ] stringstringValid values[ "k256" ] stringstringValid values[ "x25519" ] stringstringValid values[ "ed25519" ] stringstringValid values[ "x448" ] stringstringValid values[ "ed448" ] stringstringValid values[ "brainpool_p256r1" ] stringstringValid values[ "brainpool_p384r1" ] stringstringValid values[ "brainpool_p512r1" ] DiscoveryCurveVariantOtherobject (DiscoveryCurveVariantOther)otherstring A catch-all if you really need to accept arbitrary curve names stringstringValid values[ "prime192_v1" ] stringstringValid values[ "prime192_v2" ] stringstringValid values[ "prime192_v3" ] stringstringValid values[ "prime239_v1" ] stringstringValid values[ "prime239_v2" ] stringstringValid values[ "prime239_v3" ] stringstringValid values[ "prime256_v1" ] stringstringValid values[ "ansi_t163_k1" ] stringstringValid values[ "ansi_t163_r1" ] stringstringValid values[ "ansi_t239_k1" ] stringstringValid values[ "sec_t113_r1" ] stringstringValid values[ "sec_t113_r2" ] stringstringValid values[ "sec_p112_r1" ] stringstringValid values[ "sec_p112_r2" ] stringstringValid values[ "ansi_p160_r1" ] stringstringValid values[ "ansi_p160_k1" ] stringstringValid values[ "ansi_p256_k1" ] stringstringValid values[ "ansi_t163_r2" ] stringstringValid values[ "ansi_t283_k1" ] stringstringValid values[ "ansi_t283_r1" ] stringstringValid values[ "sec_t131_r1" ] stringstringValid values[ "sec_t131_r2" ] stringstringValid values[ "ansi_t193_r1" ] stringstringValid values[ "ansi_t193_r2" ] stringstringValid values[ "ansi_t233_k1" ] stringstringValid values[ "ansi_t233_r1" ] stringstringValid values[ "sec_p128_r1" ] stringstringValid values[ "sec_p128_r2" ] stringstringValid values[ "ansi_p160_r2" ] stringstringValid values[ "ansi_p192_k1" ] stringstringValid values[ "ansi_p224_k1" ] stringstringValid values[ "ansi_p224_r1" ] stringstringValid values[ "ansi_p384_r1" ] stringstringValid values[ "ansi_p521_r1" ] stringstringValid values[ "ansi_t409_k1" ] stringstringValid values[ "ansi_t409_r1" ] stringstringValid values[ "ansi_t571_k1" ] stringstringValid values[ "ansi_t571_r1" ] stringstringValid values[ "c2_pnb163_v1" ] stringstringValid values[ "c2_pnb163_v2" ] stringstringValid values[ "c2_pnb163_v3" ] stringstringValid values[ "c2_pnb176_w1" ] stringstringValid values[ "c2_tnb191_v1" ] stringstringValid values[ "c2_tnb191_v2" ] stringstringValid values[ "c2_tnb191_v3" ] stringstringValid values[ "c2_onb191_v4" ] stringstringValid values[ "c2_onb191_v5" ] stringstringValid values[ "c2_pnb208_w1" ] stringstringValid values[ "c2_tnb239_v1" ] stringstringValid values[ "c2_tnb239_v2" ] stringstringValid values[ "c2_tnb239_v3" ] stringstringValid values[ "c2_onb239_v4" ] stringstringValid values[ "c2_onb239_v5" ] stringstringValid values[ "c2_pnb272_w1" ] stringstringValid values[ "c2_pnb304_w1" ] stringstringValid values[ "c2_tnb359_v1" ] stringstringValid values[ "c2_pnb368_w1" ] stringstringValid values[ "c2_tnb431_r1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls3" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls4" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls5" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls6" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls7" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls8" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls9" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls10" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls11" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls12" ] stringstringValid values[ "brainpool_p160_r1" ] stringstringValid values[ "brainpool_p160_t1" ] stringstringValid values[ "brainpool_p192_r1" ] stringstringValid values[ "brainpool_p192_t1" ] stringstringValid values[ "brainpool_p224_r1" ] stringstringValid values[ "brainpool_p224_t1" ] stringstringValid values[ "brainpool_p256_r1" ] stringstringValid values[ "brainpool_p256_t1" ] stringstringValid values[ "brainpool_p320_r1" ] stringstringValid values[ "brainpool_p320_t1" ] stringstringValid values[ "brainpool_p384_r1" ] stringstringValid values[ "brainpool_p384_t1" ] stringstringValid values[ "brainpool_p512_r1" ] stringstringValid values[ "brainpool_p512_t1" ] stringstringValid values[ "implicit_curve" ] stringstringValid values[ "specified_curve" ] DiscoveryParametersMetadataVariantDiffieHellmanobject (DiscoveryParametersMetadataVariantDiffieHellman)diffie_hellmanobject g Array of integer integer Minimum0Maximum255 p Array of integer integer Minimum0Maximum255 q Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantJwt DiscoveryCryptographicMetadataVariantSshobject (DiscoveryCryptographicMetadataVariantSsh)sshOneOfDiscoverySshMetadataVariantOpenSshPublicKeyobject (DiscoverySshMetadataVariantOpenSshPublicKey)open_ssh_public_keyobject commentstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantOpenSshPrivateKeyobject (DiscoverySshMetadataVariantOpenSshPrivateKey)open_ssh_private_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantPuttyKeyobject (DiscoverySshMetadataVariantPuttyKey)putty_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 private_macstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPgpobject (DiscoveryCryptographicMetadataVariantPgp)pgpOneOfDiscoveryPgpMetadataVariantPrivateKeyobject (DiscoveryPgpMetadataVariantPrivateKey)PrivateKeyobject DiscoveryPgpMetadataVariantPublicKeyobject (DiscoveryPgpMetadataVariantPublicKey)PublicKeyobject DiscoveryPgpMetadataVariantMessageobject (DiscoveryPgpMetadataVariantMessage)Messagestring Valid values[ "Literal", "Compressed", "Signed", "SignedOnePass", "Encrypted" ] DiscoveryPgpMetadataVariantSignatureobject (DiscoveryPgpMetadataVariantSignature)Signatureobject DiscoveryCryptographicMetadataVariantMultiple jwk_set_urlstring | null key_idstring | null nonce Array of integer | null integer Minimum0Maximum255 token_typestring | null urlstring | null x509_certificate_chain Array of array | null Array of integer integer Minimum0Maximum255 x509_certificate_sha1_thumbprint Array of integer | null integer Minimum0Maximum255 x509_certificate_sha256_thumbprint Array of integer | null integer Minimum0Maximum255 x509_urlstring | null DiscoveryJwtHeaderVariantProtectedJwsHeaderobject (DiscoveryJwtHeaderVariantProtectedJwsHeader)protected_jws_headerobject algorithmstring | null content_typestring | null critical Array of string | null string jwkOneOfDiscoveryCryptographicMetadataVariantSymmetricKeyobject (DiscoveryCryptographicMetadataVariantSymmetricKey)symmetric_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPublicKeyobject (DiscoveryCryptographicMetadataVariantPublicKey)public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPrivateKeyobject (DiscoveryCryptographicMetadataVariantPrivateKey)private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantCertificateobject (DiscoveryCryptographicMetadataVariantCertificate)certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger DiscoveryCryptographicMetadataVariantTrustedCertificateobject (DiscoveryCryptographicMetadataVariantTrustedCertificate)trusted_certificateobject certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger extended_usageobject allowed_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found rejected_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found DiscoveryCryptographicMetadataVariantCertificateSigningRequestobject (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)certificate_signing_requestobject pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null property*string additionalProperties DiscoveryCryptographicMetadataVariantCertificateRevocationListobject (DiscoveryCryptographicMetadataVariantCertificateRevocationList)certificate_revocation_listobject issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs7object (DiscoveryCryptographicMetadataVariantPkcs7)pkcs7OneOfDiscoveryPkcs7MetadataVariantDataobject (DiscoveryPkcs7MetadataVariantData)dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedDataobject (DiscoveryPkcs7MetadataVariantSignedData)signed_dataobject certificates Array of object (DiscoveryCertificateMetadata) | null object fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger crls Array of object (DiscoveryCertificateRevocationList) | null object issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest_algorithms Array of object (DiscoveryCryptographicAlgorithm) OneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encapsulated_content_typestring signer_info Array of object (DiscoveryPkcs7SignerInfoMetadata) object digest_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 sidOneOfDiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumberobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)issuer_and_serial_numberobject name Array of string string serial_number Array of integer integer Minimum0Maximum255 DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifierobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)subject_key_identifierobject id Array of integer integer Minimum0Maximum255 signature Array of integer integer Minimum0Maximum255 signature_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signed_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string unsigned_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string versioninteger Minimum0Maximum4294967295 versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEnvelopedDataobject (DiscoveryPkcs7MetadataVariantEnvelopedData)enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedAndEnvelopedDataobject (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)signed_and_enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDigestedDataobject (DiscoveryPkcs7MetadataVariantDigestedData)digested_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedDataobject (DiscoveryPkcs7MetadataVariantEncryptedData)encrypted_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDataWithAttributesobject (DiscoveryPkcs7MetadataVariantDataWithAttributes)data_with_attributesobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfoobject (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)encrypted_private_key_infoobject versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs12object (DiscoveryCryptographicMetadataVariantPkcs12)pkcs12object encryptedboolean mac_dataobject algorithOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest Array of integer integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantParametersobject (DiscoveryCryptographicMetadataVariantParameters)parametersOneOfDiscoveryParametersMetadataVariantEllipticCurveobject (DiscoveryParametersMetadataVariantEllipticCurve)elliptic_curveOneOfDiscoveryEllipticCurveParamsMetadataVariantNamedCurveobject (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)named_curve Elliptic curves for selected crypto algorithms OneOfstringstringValid values[ "p256" ] stringstringValid values[ "p384" ] stringstringValid values[ "p521" ] stringstringValid values[ "k256" ] stringstringValid values[ "x25519" ] stringstringValid values[ "ed25519" ] stringstringValid values[ "x448" ] stringstringValid values[ "ed448" ] stringstringValid values[ "brainpool_p256r1" ] stringstringValid values[ "brainpool_p384r1" ] stringstringValid values[ "brainpool_p512r1" ] DiscoveryCurveVariantOtherobject (DiscoveryCurveVariantOther)otherstring A catch-all if you really need to accept arbitrary curve names stringstringValid values[ "prime192_v1" ] stringstringValid values[ "prime192_v2" ] stringstringValid values[ "prime192_v3" ] stringstringValid values[ "prime239_v1" ] stringstringValid values[ "prime239_v2" ] stringstringValid values[ "prime239_v3" ] stringstringValid values[ "prime256_v1" ] stringstringValid values[ "ansi_t163_k1" ] stringstringValid values[ "ansi_t163_r1" ] stringstringValid values[ "ansi_t239_k1" ] stringstringValid values[ "sec_t113_r1" ] stringstringValid values[ "sec_t113_r2" ] stringstringValid values[ "sec_p112_r1" ] stringstringValid values[ "sec_p112_r2" ] stringstringValid values[ "ansi_p160_r1" ] stringstringValid values[ "ansi_p160_k1" ] stringstringValid values[ "ansi_p256_k1" ] stringstringValid values[ "ansi_t163_r2" ] stringstringValid values[ "ansi_t283_k1" ] stringstringValid values[ "ansi_t283_r1" ] stringstringValid values[ "sec_t131_r1" ] stringstringValid values[ "sec_t131_r2" ] stringstringValid values[ "ansi_t193_r1" ] stringstringValid values[ "ansi_t193_r2" ] stringstringValid values[ "ansi_t233_k1" ] stringstringValid values[ "ansi_t233_r1" ] stringstringValid values[ "sec_p128_r1" ] stringstringValid values[ "sec_p128_r2" ] stringstringValid values[ "ansi_p160_r2" ] stringstringValid values[ "ansi_p192_k1" ] stringstringValid values[ "ansi_p224_k1" ] stringstringValid values[ "ansi_p224_r1" ] stringstringValid values[ "ansi_p384_r1" ] stringstringValid values[ "ansi_p521_r1" ] stringstringValid values[ "ansi_t409_k1" ] stringstringValid values[ "ansi_t409_r1" ] stringstringValid values[ "ansi_t571_k1" ] stringstringValid values[ "ansi_t571_r1" ] stringstringValid values[ "c2_pnb163_v1" ] stringstringValid values[ "c2_pnb163_v2" ] stringstringValid values[ "c2_pnb163_v3" ] stringstringValid values[ "c2_pnb176_w1" ] stringstringValid values[ "c2_tnb191_v1" ] stringstringValid values[ "c2_tnb191_v2" ] stringstringValid values[ "c2_tnb191_v3" ] stringstringValid values[ "c2_onb191_v4" ] stringstringValid values[ "c2_onb191_v5" ] stringstringValid values[ "c2_pnb208_w1" ] stringstringValid values[ "c2_tnb239_v1" ] stringstringValid values[ "c2_tnb239_v2" ] stringstringValid values[ "c2_tnb239_v3" ] stringstringValid values[ "c2_onb239_v4" ] stringstringValid values[ "c2_onb239_v5" ] stringstringValid values[ "c2_pnb272_w1" ] stringstringValid values[ "c2_pnb304_w1" ] stringstringValid values[ "c2_tnb359_v1" ] stringstringValid values[ "c2_pnb368_w1" ] stringstringValid values[ "c2_tnb431_r1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls3" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls4" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls5" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls6" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls7" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls8" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls9" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls10" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls11" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls12" ] stringstringValid values[ "brainpool_p160_r1" ] stringstringValid values[ "brainpool_p160_t1" ] stringstringValid values[ "brainpool_p192_r1" ] stringstringValid values[ "brainpool_p192_t1" ] stringstringValid values[ "brainpool_p224_r1" ] stringstringValid values[ "brainpool_p224_t1" ] stringstringValid values[ "brainpool_p256_r1" ] stringstringValid values[ "brainpool_p256_t1" ] stringstringValid values[ "brainpool_p320_r1" ] stringstringValid values[ "brainpool_p320_t1" ] stringstringValid values[ "brainpool_p384_r1" ] stringstringValid values[ "brainpool_p384_t1" ] stringstringValid values[ "brainpool_p512_r1" ] stringstringValid values[ "brainpool_p512_t1" ] stringstringValid values[ "implicit_curve" ] stringstringValid values[ "specified_curve" ] DiscoveryParametersMetadataVariantDiffieHellmanobject (DiscoveryParametersMetadataVariantDiffieHellman)diffie_hellmanobject g Array of integer integer Minimum0Maximum255 p Array of integer integer Minimum0Maximum255 q Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantJwt DiscoveryCryptographicMetadataVariantSshobject (DiscoveryCryptographicMetadataVariantSsh)sshOneOfDiscoverySshMetadataVariantOpenSshPublicKeyobject (DiscoverySshMetadataVariantOpenSshPublicKey)open_ssh_public_keyobject commentstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantOpenSshPrivateKeyobject (DiscoverySshMetadataVariantOpenSshPrivateKey)open_ssh_private_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantPuttyKeyobject (DiscoverySshMetadataVariantPuttyKey)putty_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 private_macstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPgpobject (DiscoveryCryptographicMetadataVariantPgp)pgpOneOfDiscoveryPgpMetadataVariantPrivateKeyobject (DiscoveryPgpMetadataVariantPrivateKey)PrivateKeyobject DiscoveryPgpMetadataVariantPublicKeyobject (DiscoveryPgpMetadataVariantPublicKey)PublicKeyobject DiscoveryPgpMetadataVariantMessageobject (DiscoveryPgpMetadataVariantMessage)Messagestring Valid values[ "Literal", "Compressed", "Signed", "SignedOnePass", "Encrypted" ] DiscoveryPgpMetadataVariantSignatureobject (DiscoveryPgpMetadataVariantSignature)Signatureobject DiscoveryCryptographicMetadataVariantMultiple jwk_set_urlstring | null key_idstring | null nonce Array of integer | null integer Minimum0Maximum255 token_typestring | null urlstring | null x509_certificate_chain Array of array | null Array of integer integer Minimum0Maximum255 x509_certificate_sha1_thumbprint Array of integer | null integer Minimum0Maximum255 x509_certificate_sha256_thumbprint Array of integer | null integer Minimum0Maximum255 x509_urlstring | null DiscoveryJwtHeaderVariantJweHeaderobject (DiscoveryJwtHeaderVariantJweHeader)jwe_headerobject agreement_partyuinfo Array of integer | null integer Minimum0Maximum255 agreement_partyvinfo Array of integer | null integer Minimum0Maximum255 algorithmstring | null audiencestring | null compressionstring | null content_encryptionstring | null content_typestring | null critical Array of string | null string issuerstring | null jwkOneOfDiscoveryCryptographicMetadataVariantSymmetricKeyobject (DiscoveryCryptographicMetadataVariantSymmetricKey)symmetric_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPublicKeyobject (DiscoveryCryptographicMetadataVariantPublicKey)public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPrivateKeyobject (DiscoveryCryptographicMetadataVariantPrivateKey)private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantCertificateobject (DiscoveryCryptographicMetadataVariantCertificate)certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger DiscoveryCryptographicMetadataVariantTrustedCertificateobject (DiscoveryCryptographicMetadataVariantTrustedCertificate)trusted_certificateobject certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger extended_usageobject allowed_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found rejected_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found DiscoveryCryptographicMetadataVariantCertificateSigningRequestobject (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)certificate_signing_requestobject pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null property*string additionalProperties DiscoveryCryptographicMetadataVariantCertificateRevocationListobject (DiscoveryCryptographicMetadataVariantCertificateRevocationList)certificate_revocation_listobject issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs7object (DiscoveryCryptographicMetadataVariantPkcs7)pkcs7OneOfDiscoveryPkcs7MetadataVariantDataobject (DiscoveryPkcs7MetadataVariantData)dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedDataobject (DiscoveryPkcs7MetadataVariantSignedData)signed_dataobject certificates Array of object (DiscoveryCertificateMetadata) | null object fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger crls Array of object (DiscoveryCertificateRevocationList) | null object issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest_algorithms Array of object (DiscoveryCryptographicAlgorithm) OneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encapsulated_content_typestring signer_info Array of object (DiscoveryPkcs7SignerInfoMetadata) object digest_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 sidOneOfDiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumberobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)issuer_and_serial_numberobject name Array of string string serial_number Array of integer integer Minimum0Maximum255 DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifierobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)subject_key_identifierobject id Array of integer integer Minimum0Maximum255 signature Array of integer integer Minimum0Maximum255 signature_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signed_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string unsigned_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string versioninteger Minimum0Maximum4294967295 versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEnvelopedDataobject (DiscoveryPkcs7MetadataVariantEnvelopedData)enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedAndEnvelopedDataobject (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)signed_and_enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDigestedDataobject (DiscoveryPkcs7MetadataVariantDigestedData)digested_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedDataobject (DiscoveryPkcs7MetadataVariantEncryptedData)encrypted_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDataWithAttributesobject (DiscoveryPkcs7MetadataVariantDataWithAttributes)data_with_attributesobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfoobject (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)encrypted_private_key_infoobject versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs12object (DiscoveryCryptographicMetadataVariantPkcs12)pkcs12object encryptedboolean mac_dataobject algorithOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest Array of integer integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantParametersobject (DiscoveryCryptographicMetadataVariantParameters)parametersOneOfDiscoveryParametersMetadataVariantEllipticCurveobject (DiscoveryParametersMetadataVariantEllipticCurve)elliptic_curveOneOfDiscoveryEllipticCurveParamsMetadataVariantNamedCurveobject (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)named_curve Elliptic curves for selected crypto algorithms OneOfstringstringValid values[ "p256" ] stringstringValid values[ "p384" ] stringstringValid values[ "p521" ] stringstringValid values[ "k256" ] stringstringValid values[ "x25519" ] stringstringValid values[ "ed25519" ] stringstringValid values[ "x448" ] stringstringValid values[ "ed448" ] stringstringValid values[ "brainpool_p256r1" ] stringstringValid values[ "brainpool_p384r1" ] stringstringValid values[ "brainpool_p512r1" ] DiscoveryCurveVariantOtherobject (DiscoveryCurveVariantOther)otherstring A catch-all if you really need to accept arbitrary curve names stringstringValid values[ "prime192_v1" ] stringstringValid values[ "prime192_v2" ] stringstringValid values[ "prime192_v3" ] stringstringValid values[ "prime239_v1" ] stringstringValid values[ "prime239_v2" ] stringstringValid values[ "prime239_v3" ] stringstringValid values[ "prime256_v1" ] stringstringValid values[ "ansi_t163_k1" ] stringstringValid values[ "ansi_t163_r1" ] stringstringValid values[ "ansi_t239_k1" ] stringstringValid values[ "sec_t113_r1" ] stringstringValid values[ "sec_t113_r2" ] stringstringValid values[ "sec_p112_r1" ] stringstringValid values[ "sec_p112_r2" ] stringstringValid values[ "ansi_p160_r1" ] stringstringValid values[ "ansi_p160_k1" ] stringstringValid values[ "ansi_p256_k1" ] stringstringValid values[ "ansi_t163_r2" ] stringstringValid values[ "ansi_t283_k1" ] stringstringValid values[ "ansi_t283_r1" ] stringstringValid values[ "sec_t131_r1" ] stringstringValid values[ "sec_t131_r2" ] stringstringValid values[ "ansi_t193_r1" ] stringstringValid values[ "ansi_t193_r2" ] stringstringValid values[ "ansi_t233_k1" ] stringstringValid values[ "ansi_t233_r1" ] stringstringValid values[ "sec_p128_r1" ] stringstringValid values[ "sec_p128_r2" ] stringstringValid values[ "ansi_p160_r2" ] stringstringValid values[ "ansi_p192_k1" ] stringstringValid values[ "ansi_p224_k1" ] stringstringValid values[ "ansi_p224_r1" ] stringstringValid values[ "ansi_p384_r1" ] stringstringValid values[ "ansi_p521_r1" ] stringstringValid values[ "ansi_t409_k1" ] stringstringValid values[ "ansi_t409_r1" ] stringstringValid values[ "ansi_t571_k1" ] stringstringValid values[ "ansi_t571_r1" ] stringstringValid values[ "c2_pnb163_v1" ] stringstringValid values[ "c2_pnb163_v2" ] stringstringValid values[ "c2_pnb163_v3" ] stringstringValid values[ "c2_pnb176_w1" ] stringstringValid values[ "c2_tnb191_v1" ] stringstringValid values[ "c2_tnb191_v2" ] stringstringValid values[ "c2_tnb191_v3" ] stringstringValid values[ "c2_onb191_v4" ] stringstringValid values[ "c2_onb191_v5" ] stringstringValid values[ "c2_pnb208_w1" ] stringstringValid values[ "c2_tnb239_v1" ] stringstringValid values[ "c2_tnb239_v2" ] stringstringValid values[ "c2_tnb239_v3" ] stringstringValid values[ "c2_onb239_v4" ] stringstringValid values[ "c2_onb239_v5" ] stringstringValid values[ "c2_pnb272_w1" ] stringstringValid values[ "c2_pnb304_w1" ] stringstringValid values[ "c2_tnb359_v1" ] stringstringValid values[ "c2_pnb368_w1" ] stringstringValid values[ "c2_tnb431_r1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls3" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls4" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls5" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls6" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls7" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls8" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls9" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls10" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls11" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls12" ] stringstringValid values[ "brainpool_p160_r1" ] stringstringValid values[ "brainpool_p160_t1" ] stringstringValid values[ "brainpool_p192_r1" ] stringstringValid values[ "brainpool_p192_t1" ] stringstringValid values[ "brainpool_p224_r1" ] stringstringValid values[ "brainpool_p224_t1" ] stringstringValid values[ "brainpool_p256_r1" ] stringstringValid values[ "brainpool_p256_t1" ] stringstringValid values[ "brainpool_p320_r1" ] stringstringValid values[ "brainpool_p320_t1" ] stringstringValid values[ "brainpool_p384_r1" ] stringstringValid values[ "brainpool_p384_t1" ] stringstringValid values[ "brainpool_p512_r1" ] stringstringValid values[ "brainpool_p512_t1" ] stringstringValid values[ "implicit_curve" ] stringstringValid values[ "specified_curve" ] DiscoveryParametersMetadataVariantDiffieHellmanobject (DiscoveryParametersMetadataVariantDiffieHellman)diffie_hellmanobject g Array of integer integer Minimum0Maximum255 p Array of integer integer Minimum0Maximum255 q Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantJwt DiscoveryCryptographicMetadataVariantSshobject (DiscoveryCryptographicMetadataVariantSsh)sshOneOfDiscoverySshMetadataVariantOpenSshPublicKeyobject (DiscoverySshMetadataVariantOpenSshPublicKey)open_ssh_public_keyobject commentstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantOpenSshPrivateKeyobject (DiscoverySshMetadataVariantOpenSshPrivateKey)open_ssh_private_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantPuttyKeyobject (DiscoverySshMetadataVariantPuttyKey)putty_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 private_macstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPgpobject (DiscoveryCryptographicMetadataVariantPgp)pgpOneOfDiscoveryPgpMetadataVariantPrivateKeyobject (DiscoveryPgpMetadataVariantPrivateKey)PrivateKeyobject DiscoveryPgpMetadataVariantPublicKeyobject (DiscoveryPgpMetadataVariantPublicKey)PublicKeyobject DiscoveryPgpMetadataVariantMessageobject (DiscoveryPgpMetadataVariantMessage)Messagestring Valid values[ "Literal", "Compressed", "Signed", "SignedOnePass", "Encrypted" ] DiscoveryPgpMetadataVariantSignatureobject (DiscoveryPgpMetadataVariantSignature)Signatureobject DiscoveryCryptographicMetadataVariantMultiple jwk_set_urlstring | null key_idstring | null nonce Array of integer | null integer Minimum0Maximum255 subjectstring | null token_typestring | null urlstring | null x509_certificate_chain Array of array | null Array of integer integer Minimum0Maximum255 x509_certificate_sha1_thumbprint Array of integer | null integer Minimum0Maximum255 x509_certificate_sha256_thumbprint Array of integer | null integer Minimum0Maximum255 x509_urlstring | null DiscoveryJwtHeaderVariantProtectedJweHeaderobject (DiscoveryJwtHeaderVariantProtectedJweHeader)protected_jwe_headerobject agreement_partyuinfo Array of integer | null integer Minimum0Maximum255 agreement_partyvinfo Array of integer | null integer Minimum0Maximum255 algorithmstring | null audiencestring | null compressionstring | null content_encryptionstring | null content_typestring | null critical Array of string | null string issuerstring | null jwkOneOfDiscoveryCryptographicMetadataVariantSymmetricKeyobject (DiscoveryCryptographicMetadataVariantSymmetricKey)symmetric_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPublicKeyobject (DiscoveryCryptographicMetadataVariantPublicKey)public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantPrivateKeyobject (DiscoveryCryptographicMetadataVariantPrivateKey)private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantCertificateobject (DiscoveryCryptographicMetadataVariantCertificate)certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger DiscoveryCryptographicMetadataVariantTrustedCertificateobject (DiscoveryCryptographicMetadataVariantTrustedCertificate)trusted_certificateobject certificateobject fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger extended_usageobject allowed_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found rejected_usages Array of object (DiscoveryExtendedKeyUsage) | null OneOfstringstringValid values[ "server_auth" ] stringstringValid values[ "client_auth" ] stringstringValid values[ "code_signing" ] stringstringValid values[ "email_protection" ] stringstringValid values[ "time_stamping" ] stringstringValid values[ "ocsp_signing" ] DiscoveryExtendedKeyUsageVariantUnknownobject (DiscoveryExtendedKeyUsageVariantUnknown)unknownstring Unknown value, will contain the OID that was found DiscoveryCryptographicMetadataVariantCertificateSigningRequestobject (DiscoveryCryptographicMetadataVariantCertificateSigningRequest)certificate_signing_requestobject pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null property*string additionalProperties DiscoveryCryptographicMetadataVariantCertificateRevocationListobject (DiscoveryCryptographicMetadataVariantCertificateRevocationList)certificate_revocation_listobject issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs7object (DiscoveryCryptographicMetadataVariantPkcs7)pkcs7OneOfDiscoveryPkcs7MetadataVariantDataobject (DiscoveryPkcs7MetadataVariantData)dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedDataobject (DiscoveryPkcs7MetadataVariantSignedData)signed_dataobject certificates Array of object (DiscoveryCertificateMetadata) | null object fingerprint Array of integer | null integer Minimum0Maximum255 issuer_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties pubkey_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 subject_cnobject | null Comes from `openssl_x509_name_to_map()` property*string additionalProperties valid_from_unix_millisinteger valid_to_unix_millisinteger crls Array of object (DiscoveryCertificateRevocationList) | null object issuer_cnobject | null property*string additionalProperties last_updatestring next_updatestring | null revoked_certificates Array of object (DiscoveryRevokedCertificate) object revoked_atstring serialstring signature_algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest_algorithms Array of object (DiscoveryCryptographicAlgorithm) OneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encapsulated_content_typestring signer_info Array of object (DiscoveryPkcs7SignerInfoMetadata) object digest_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 sidOneOfDiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumberobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantIssuerAndSerialNumber)issuer_and_serial_numberobject name Array of string string serial_number Array of integer integer Minimum0Maximum255 DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifierobject (DiscoveryPkcs7SignerIdentifieroMetadataVariantSubjectKeyIdentifier)subject_key_identifierobject id Array of integer integer Minimum0Maximum255 signature Array of integer integer Minimum0Maximum255 signature_algOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 signed_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string unsigned_attributes Array of object (DiscoveryPkcs7Attribute) | null object attribute_typestring values Array of string string versioninteger Minimum0Maximum4294967295 versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEnvelopedDataobject (DiscoveryPkcs7MetadataVariantEnvelopedData)enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantSignedAndEnvelopedDataobject (DiscoveryPkcs7MetadataVariantSignedAndEnvelopedData)signed_and_enveloped_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDigestedDataobject (DiscoveryPkcs7MetadataVariantDigestedData)digested_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedDataobject (DiscoveryPkcs7MetadataVariantEncryptedData)encrypted_dataobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantDataWithAttributesobject (DiscoveryPkcs7MetadataVariantDataWithAttributes)data_with_attributesobject versioninteger Minimum0Maximum4294967295 DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfoobject (DiscoveryPkcs7MetadataVariantEncryptedPrivateKeyInfo)encrypted_private_key_infoobject versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPkcs12object (DiscoveryCryptographicMetadataVariantPkcs12)pkcs12object encryptedboolean mac_dataobject algorithOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 digest Array of integer integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantParametersobject (DiscoveryCryptographicMetadataVariantParameters)parametersOneOfDiscoveryParametersMetadataVariantEllipticCurveobject (DiscoveryParametersMetadataVariantEllipticCurve)elliptic_curveOneOfDiscoveryEllipticCurveParamsMetadataVariantNamedCurveobject (DiscoveryEllipticCurveParamsMetadataVariantNamedCurve)named_curve Elliptic curves for selected crypto algorithms OneOfstringstringValid values[ "p256" ] stringstringValid values[ "p384" ] stringstringValid values[ "p521" ] stringstringValid values[ "k256" ] stringstringValid values[ "x25519" ] stringstringValid values[ "ed25519" ] stringstringValid values[ "x448" ] stringstringValid values[ "ed448" ] stringstringValid values[ "brainpool_p256r1" ] stringstringValid values[ "brainpool_p384r1" ] stringstringValid values[ "brainpool_p512r1" ] DiscoveryCurveVariantOtherobject (DiscoveryCurveVariantOther)otherstring A catch-all if you really need to accept arbitrary curve names stringstringValid values[ "prime192_v1" ] stringstringValid values[ "prime192_v2" ] stringstringValid values[ "prime192_v3" ] stringstringValid values[ "prime239_v1" ] stringstringValid values[ "prime239_v2" ] stringstringValid values[ "prime239_v3" ] stringstringValid values[ "prime256_v1" ] stringstringValid values[ "ansi_t163_k1" ] stringstringValid values[ "ansi_t163_r1" ] stringstringValid values[ "ansi_t239_k1" ] stringstringValid values[ "sec_t113_r1" ] stringstringValid values[ "sec_t113_r2" ] stringstringValid values[ "sec_p112_r1" ] stringstringValid values[ "sec_p112_r2" ] stringstringValid values[ "ansi_p160_r1" ] stringstringValid values[ "ansi_p160_k1" ] stringstringValid values[ "ansi_p256_k1" ] stringstringValid values[ "ansi_t163_r2" ] stringstringValid values[ "ansi_t283_k1" ] stringstringValid values[ "ansi_t283_r1" ] stringstringValid values[ "sec_t131_r1" ] stringstringValid values[ "sec_t131_r2" ] stringstringValid values[ "ansi_t193_r1" ] stringstringValid values[ "ansi_t193_r2" ] stringstringValid values[ "ansi_t233_k1" ] stringstringValid values[ "ansi_t233_r1" ] stringstringValid values[ "sec_p128_r1" ] stringstringValid values[ "sec_p128_r2" ] stringstringValid values[ "ansi_p160_r2" ] stringstringValid values[ "ansi_p192_k1" ] stringstringValid values[ "ansi_p224_k1" ] stringstringValid values[ "ansi_p224_r1" ] stringstringValid values[ "ansi_p384_r1" ] stringstringValid values[ "ansi_p521_r1" ] stringstringValid values[ "ansi_t409_k1" ] stringstringValid values[ "ansi_t409_r1" ] stringstringValid values[ "ansi_t571_k1" ] stringstringValid values[ "ansi_t571_r1" ] stringstringValid values[ "c2_pnb163_v1" ] stringstringValid values[ "c2_pnb163_v2" ] stringstringValid values[ "c2_pnb163_v3" ] stringstringValid values[ "c2_pnb176_w1" ] stringstringValid values[ "c2_tnb191_v1" ] stringstringValid values[ "c2_tnb191_v2" ] stringstringValid values[ "c2_tnb191_v3" ] stringstringValid values[ "c2_onb191_v4" ] stringstringValid values[ "c2_onb191_v5" ] stringstringValid values[ "c2_pnb208_w1" ] stringstringValid values[ "c2_tnb239_v1" ] stringstringValid values[ "c2_tnb239_v2" ] stringstringValid values[ "c2_tnb239_v3" ] stringstringValid values[ "c2_onb239_v4" ] stringstringValid values[ "c2_onb239_v5" ] stringstringValid values[ "c2_pnb272_w1" ] stringstringValid values[ "c2_pnb304_w1" ] stringstringValid values[ "c2_tnb359_v1" ] stringstringValid values[ "c2_pnb368_w1" ] stringstringValid values[ "c2_tnb431_r1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls1" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls3" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls4" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls5" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls6" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls7" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls8" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls9" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls10" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls11" ] stringstringValid values[ "wap_wsg_idm_ecid_wtls12" ] stringstringValid values[ "brainpool_p160_r1" ] stringstringValid values[ "brainpool_p160_t1" ] stringstringValid values[ "brainpool_p192_r1" ] stringstringValid values[ "brainpool_p192_t1" ] stringstringValid values[ "brainpool_p224_r1" ] stringstringValid values[ "brainpool_p224_t1" ] stringstringValid values[ "brainpool_p256_r1" ] stringstringValid values[ "brainpool_p256_t1" ] stringstringValid values[ "brainpool_p320_r1" ] stringstringValid values[ "brainpool_p320_t1" ] stringstringValid values[ "brainpool_p384_r1" ] stringstringValid values[ "brainpool_p384_t1" ] stringstringValid values[ "brainpool_p512_r1" ] stringstringValid values[ "brainpool_p512_t1" ] stringstringValid values[ "implicit_curve" ] stringstringValid values[ "specified_curve" ] DiscoveryParametersMetadataVariantDiffieHellmanobject (DiscoveryParametersMetadataVariantDiffieHellman)diffie_hellmanobject g Array of integer integer Minimum0Maximum255 p Array of integer integer Minimum0Maximum255 q Array of integer | null integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantJwt DiscoveryCryptographicMetadataVariantSshobject (DiscoveryCryptographicMetadataVariantSsh)sshOneOfDiscoverySshMetadataVariantOpenSshPublicKeyobject (DiscoverySshMetadataVariantOpenSshPublicKey)open_ssh_public_keyobject commentstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantOpenSshPrivateKeyobject (DiscoverySshMetadataVariantOpenSshPrivateKey)open_ssh_private_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantPuttyKeyobject (DiscoverySshMetadataVariantPuttyKey)putty_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 private_macstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPgpobject (DiscoveryCryptographicMetadataVariantPgp)pgpOneOfDiscoveryPgpMetadataVariantPrivateKeyobject (DiscoveryPgpMetadataVariantPrivateKey)PrivateKeyobject DiscoveryPgpMetadataVariantPublicKeyobject (DiscoveryPgpMetadataVariantPublicKey)PublicKeyobject DiscoveryPgpMetadataVariantMessageobject (DiscoveryPgpMetadataVariantMessage)Messagestring Valid values[ "Literal", "Compressed", "Signed", "SignedOnePass", "Encrypted" ] DiscoveryPgpMetadataVariantSignatureobject (DiscoveryPgpMetadataVariantSignature)Signatureobject DiscoveryCryptographicMetadataVariantMultiple jwk_set_urlstring | null key_idstring | null nonce Array of integer | null integer Minimum0Maximum255 subjectstring | null token_typestring | null urlstring | null x509_certificate_chain Array of array | null Array of integer integer Minimum0Maximum255 x509_certificate_sha1_thumbprint Array of integer | null integer Minimum0Maximum255 x509_certificate_sha256_thumbprint Array of integer | null integer Minimum0Maximum255 x509_urlstring | null signature Array of integer integer Minimum0Maximum255 DiscoveryCryptographicMetadataVariantSshobject (DiscoveryCryptographicMetadataVariantSsh)sshOneOfDiscoverySshMetadataVariantOpenSshPublicKeyobject (DiscoverySshMetadataVariantOpenSshPublicKey)open_ssh_public_keyobject commentstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantOpenSshPrivateKeyobject (DiscoverySshMetadataVariantOpenSshPrivateKey)open_ssh_private_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 DiscoverySshMetadataVariantPuttyKeyobject (DiscoverySshMetadataVariantPuttyKey)putty_keyobject commentstring private_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 encryption Describes whether the cryptographic material is wrapped in a symmetric key -- requiring a passphrase OneOfstringstringValid values[ "unencrypted" ] DiscoveryEncryptionMetadataVariantEncryptedobject (DiscoveryEncryptionMetadataVariantEncrypted)encryptedobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 private_macstring public_keyobject algorithmOneOfobjectobjectskippedinteger Minimum0Maximum4294967295 fingerprint Array of integer | null integer Minimum0Maximum255 versioninteger Minimum0Maximum4294967295 DiscoveryCryptographicMetadataVariantPgpobject (DiscoveryCryptographicMetadataVariantPgp)pgpOneOfDiscoveryPgpMetadataVariantPrivateKeyobject (DiscoveryPgpMetadataVariantPrivateKey)PrivateKeyobject DiscoveryPgpMetadataVariantPublicKeyobject (DiscoveryPgpMetadataVariantPublicKey)PublicKeyobject DiscoveryPgpMetadataVariantMessageobject (DiscoveryPgpMetadataVariantMessage)Messagestring Valid values[ "Literal", "Compressed", "Signed", "SignedOnePass", "Encrypted" ] DiscoveryPgpMetadataVariantSignatureobject (DiscoveryPgpMetadataVariantSignature)Signatureobject DiscoveryCryptographicMetadataVariantMultiple resource_host_detailsobject uristring resource_idstring objectobject$typestring Valid values[ "dsm" ] detailsOneOfobjectobject$typestring Valid values[ "dsm_sobject" ] activation_datestring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z analysisobject crypto_policy_complianceobject is_compliantboolean violation_reasonstring | null is_source_keyboolean | null compromise_datestring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z creation_datestring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z custom_metadataobject | null property*string additionalProperties deactivation_datestring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z deletion_datestring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z descriptionstring | null destruction_datestring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z dsm_group_idstring (uuid) dsm_group_namestring | null elliptic_curvestring Valid values[ "x25519", "ed25519", "x448", "secp192k1", "secp224k1", "secp256k1", "nistp192", "nistp224", "nistp256", "nistp384", "nistp521", "gost256a", "other" ] hmg_configs Array of object (DiscoveryDsmHmgConfig) | null object hmg_typestring Valid values[ "ncipher", "safenet", "aws_cloud_hsm", "aws_kms", "fortanix", "fortanix_fips_cluster", "azure_key_vault", "gcp_key_ring", "other" ] urlstring | null is_enabledboolean kcvstring | null key_linksobject copied_fromstring (uuid) | null copied_to Array of string | null string (uuid) parentstring (uuid) | null replacedstring (uuid) | null replacementstring (uuid) | null subkeys Array of string | null string (uuid) wrapping_keystring (uuid) | null key_operations Array of string (DiscoveryDsmSobjectKeyOperations) | null string Operations Allowed To Be Performed On A Given Key. Valid values[ "sign", "verify", "encrypt", "decrypt", "wrapkey", "unwrapkey", "derivekey", "transform", "macgenerate", "macverify", "export", "appmanageable", "highvolume", "agreekey", "encapsulate", "decapsulate", "other" ] key_sizeinteger | null Minimum0Maximum4294967295 namestring object_typestring Valid values[ "aes", "aria", "des", "des3", "seed", "rsa", "dsa", "ec", "kcdsa", "ec_kcdsa", "bip32", "bls", "opaque", "hmac", "leda_beta", "round5_beta", "secret", "lms", "ml_dsa_beta", "ml_kem_beta", "certificate", "pbe", "other" ] originstring The origin of a security object - where it was created / generated. Valid values[ "fortanix_hsm", "transient", "external", "other" ] rotation_policyobject deactivate_rotated_keyboolean | null effective_atstring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z intervalOneOfobjectobject$typestring Valid values[ "interval_days" ] daysinteger Minimum0Maximum4294967295 objectobject$typestring Valid values[ "interval_months" ] monthsinteger Minimum0Maximum4294967295 objectobject$typestring Valid values[ "other" ] rotate_copied_keysOneOfobjectobject$typestring Valid values[ "all_external" ] objectobject$typestring Valid values[ "select" ] sobject_ids Array of string string (uuid) objectobject$typestring Valid values[ "other" ] sobject_idstring (uuid) statestring DSM Security object operational state. Valid values[ "pre_active", "active", "deactivated", "compromised", "destroyed", "deleted", "other", "not_available" ] dsm_account_idstring (uuid) group_idstring (uuid) idstring (uuid) inventory_objectobject acct_idstring (uuid) KI account extension id connection_idstring (uuid) KI account's connection id external_id an enum that maps to unique identifier provided by Cloud/Onprem OneOfobjectobject$typestring Valid values[ "aws" ] arnstring fully qualified resource id as defined by AWS servicestring Valid values[ "acm", "ebs", "kms", "s3", "rds", "dynamo_db", "eks", "efs", "redshift" ] objectobject$typestring Valid values[ "azure" ] resource_idstring fully qualified resource id as defined by Azure servicestring Valid values[ "key_vaults", "storage_accounts", "sql_server", "cosmos_db", "container_groups", "managed_disks", "managed_clusters", "storage_account_blobs" ] objectobject$typestring Valid values[ "dsm" ] deploymentOneOfobjectobject$typestring Valid values[ "saas" ] regionstring Valid values[ "north_america", "european_union", "united_kingdom", "asia_pacific", "australia", "saudi_arabia" ] objectobject$typestring Valid values[ "other" ] urlstring (url) idstring (uuid) resource_typestring Useful for specifying [InventoryObjectExternalId]s Valid values[ "dsm_sobject" ] objectobject$typestring Valid values[ "on_prem" ] resource_idstring unique id resource_typestring Valid values[ "on_prem_key", "on_prem_ms_sql_database", "on_prem_oracle_database", "on_prem_source_code_repo", "on_prem_source_code_component", "filesystem" ] service_uristring Db/filesystem uri which yielded this resource objectobject$typestring Valid values[ "on_prem_fs" ] file_pathstring machine_idstring group_idstring (uuid) KI group extension id idstring (uuid) generated by KI. remains static throughout lifetime of account last_scan_inventory_objectobject idstring (uuid) scan_idstring (uuid) object_infoobject ownership_detailsobject descriptionstring | null primary_ownerobject emailstring namestring secondary_ownerobject emailstring namestring scan_idstring (uuid) scanned_atstring Pattern^\d{4}\d{2}\d{2}T\d{2}\d{2}\d{2}Z$Example20170509T070912Z