certificate.query

Sent on certificate changes.

Type: object

CertificateAddedEvent

Type: object
No Additional Properties

Id

Type: integer

CertificateEntry

Type: object
No Additional Properties

Id

Type: integer

Unique identifier for this certificate entry.

Type

Type: integer

Internal certificate type identifier used to determine certificate capabilities.

Name

Type: string

Human-readable name for this certificate. Must be unique and contain only alphanumeric characters, dashes, and underscores.

Must be at least 1 characters long

Certificate


PEM-encoded X.509 certificate data. null for certificate signing requests (CSR) that have not yet been signed.

Type: string
Type: null

Privatekey


PEM-encoded private key corresponding to the certificate. null if no private key is available or for imported certificates without keys.

Type: string
Type: null

Csr


PEM-encoded Certificate Signing Request (CSR) data. null for imported certificates or completed ACME certificates.

Type: string
Type: null

Acme Uri


ACME directory server URI used for automated certificate management. null for non-ACME certificates.

Type: string
Type: null

Domains Authenticators


Mapping of domain names to ACME DNS authenticator IDs for domain validation. null for non-ACME certificates.

Type: object
Type: null

Renew Days


Number of days before expiration to attempt automatic renewal. Only applicable for ACME certificates. null for non-renewable certificates.

Type: integer
Type: null

Acme


ACME registration and account information used for certificate lifecycle management. null for non-ACME certificates.

Type: object
Type: null

Add To Trusted Store

Type: boolean

Whether this certificate should be added to the system's trusted certificate store.

Root Path

Type: string

Filesystem path where certificate-related files are stored.

Must be at least 1 characters long

Certificate Path


Filesystem path to the certificate file (.crt). null if no certificate is available.

Type: string

Must be at least 1 characters long

Type: null

Privatekey Path


Filesystem path to the private key file (.key). null if no private key is available.

Type: string

Must be at least 1 characters long

Type: null

Csr Path


Filesystem path to the certificate signing request file (.csr). null if no CSR is available.

Type: string

Must be at least 1 characters long

Type: null

Cert Type

Type: string

Human-readable certificate type, typically 'CERTIFICATE' for standard certificates.

Must be at least 1 characters long

Cert Type Existing

Type: boolean

Whether this is an existing certificate (imported or generated).

Cert Type Csr

Type: boolean

Whether this entry represents a Certificate Signing Request (CSR) rather than a signed certificate.

Cert Type Ca

Type: boolean

Whether this certificate is a Certificate Authority (CA) certificate.

Chain List

Type: array of string

Array of PEM-encoded certificates in the certificate chain, starting with the leaf certificate.

 No Additional Items
Each item of this array must be:
Type: string

Key Length


Size of the cryptographic key in bits. null if key information is unavailable.

Type: integer
Type: null

Key Type


Type of cryptographic key algorithm (e.g., 'RSA', 'EC', 'DSA'). null if key information is unavailable.

Type: string

Must be at least 1 characters long

Type: null

Country


ISO 3166-1 alpha-2 country code from the certificate subject. null if not specified.

Type: string
Type: null

State


State or province name from the certificate subject. null if not specified.

Type: string
Type: null

City


City or locality name from the certificate subject. null if not specified.

Type: string
Type: null

Organization


Organization name from the certificate subject. null if not specified.

Type: string
Type: null

Organizational Unit


Organizational unit from the certificate subject. null if not specified.

Type: string
Type: null

Common


Common name (CN) from the certificate subject. null if not specified.

Type: string
Type: null

San


Subject Alternative Names (SAN) from the certificate extension. null if no SAN extension is present.

Type: array of string
No Additional Items
Each item of this array must be:
Type: string
Type: null

Email


Email address from the certificate subject. null if not specified.

Type: string
Type: null

Dn


Distinguished Name (DN) of the certificate subject in RFC 2253 format. null if certificate parsing failed.

Type: string
Type: null

Subject Name Hash


Hash of the certificate subject name. null if certificate parsing failed.

Type: integer
Type: null

Extensions

Type: object

X.509 certificate extensions parsed into a dictionary structure.

Digest Algorithm


Cryptographic hash algorithm used for certificate signing (e.g., 'SHA256'). null if unavailable.

Type: string
Type: null

Lifetime


Certificate validity period in seconds. null if certificate parsing failed.

Type: integer
Type: null

From


Certificate validity start date in ISO 8601 format. null if certificate parsing failed.

Type: string
Type: null

Until


Certificate validity end date in ISO 8601 format. null if certificate parsing failed.

Type: string
Type: null

Serial


Certificate serial number. null if certificate parsing failed.

Type: integer
Type: null

Chain


Whether this certificate has an associated certificate chain. null if unavailable.

Type: boolean
Type: null

Fingerprint


SHA-256 fingerprint of the certificate in hexadecimal format. null if certificate parsing failed.

Type: string
Type: null

Expired


Whether the certificate has expired. null if certificate parsing failed.

Type: boolean
Type: null

Parsed

Type: boolean

Whether the certificate data was successfully parsed and validated.

CertificateChangedEvent

Type: object
No Additional Properties

Id

Type: integer

CertificateEntry

Type: object
No Additional Properties

Id

Type: integer

Unique identifier for this certificate entry.

Type

Type: integer

Internal certificate type identifier used to determine certificate capabilities.

Name

Type: string

Human-readable name for this certificate. Must be unique and contain only alphanumeric characters, dashes, and underscores.

Must be at least 1 characters long

Certificate


PEM-encoded X.509 certificate data. null for certificate signing requests (CSR) that have not yet been signed.

Type: string
Type: null

Privatekey


PEM-encoded private key corresponding to the certificate. null if no private key is available or for imported certificates without keys.

Type: string
Type: null

Csr


PEM-encoded Certificate Signing Request (CSR) data. null for imported certificates or completed ACME certificates.

Type: string
Type: null

Acme Uri


ACME directory server URI used for automated certificate management. null for non-ACME certificates.

Type: string
Type: null

Domains Authenticators


Mapping of domain names to ACME DNS authenticator IDs for domain validation. null for non-ACME certificates.

Type: object
Type: null

Renew Days


Number of days before expiration to attempt automatic renewal. Only applicable for ACME certificates. null for non-renewable certificates.

Type: integer
Type: null

Acme


ACME registration and account information used for certificate lifecycle management. null for non-ACME certificates.

Type: object
Type: null

Add To Trusted Store

Type: boolean

Whether this certificate should be added to the system's trusted certificate store.

Root Path

Type: string

Filesystem path where certificate-related files are stored.

Must be at least 1 characters long

Certificate Path


Filesystem path to the certificate file (.crt). null if no certificate is available.

Type: string

Must be at least 1 characters long

Type: null

Privatekey Path


Filesystem path to the private key file (.key). null if no private key is available.

Type: string

Must be at least 1 characters long

Type: null

Csr Path


Filesystem path to the certificate signing request file (.csr). null if no CSR is available.

Type: string

Must be at least 1 characters long

Type: null

Cert Type

Type: string

Human-readable certificate type, typically 'CERTIFICATE' for standard certificates.

Must be at least 1 characters long

Cert Type Existing

Type: boolean

Whether this is an existing certificate (imported or generated).

Cert Type Csr

Type: boolean

Whether this entry represents a Certificate Signing Request (CSR) rather than a signed certificate.

Cert Type Ca

Type: boolean

Whether this certificate is a Certificate Authority (CA) certificate.

Chain List

Type: array of string

Array of PEM-encoded certificates in the certificate chain, starting with the leaf certificate.

 No Additional Items
Each item of this array must be:
Type: string

Key Length


Size of the cryptographic key in bits. null if key information is unavailable.

Type: integer
Type: null

Key Type


Type of cryptographic key algorithm (e.g., 'RSA', 'EC', 'DSA'). null if key information is unavailable.

Type: string

Must be at least 1 characters long

Type: null

Country


ISO 3166-1 alpha-2 country code from the certificate subject. null if not specified.

Type: string
Type: null

State


State or province name from the certificate subject. null if not specified.

Type: string
Type: null

City


City or locality name from the certificate subject. null if not specified.

Type: string
Type: null

Organization


Organization name from the certificate subject. null if not specified.

Type: string
Type: null

Organizational Unit


Organizational unit from the certificate subject. null if not specified.

Type: string
Type: null

Common


Common name (CN) from the certificate subject. null if not specified.

Type: string
Type: null

San


Subject Alternative Names (SAN) from the certificate extension. null if no SAN extension is present.

Type: array of string
No Additional Items
Each item of this array must be:
Type: string
Type: null

Email


Email address from the certificate subject. null if not specified.

Type: string
Type: null

Dn


Distinguished Name (DN) of the certificate subject in RFC 2253 format. null if certificate parsing failed.

Type: string
Type: null

Subject Name Hash


Hash of the certificate subject name. null if certificate parsing failed.

Type: integer
Type: null

Extensions

Type: object

X.509 certificate extensions parsed into a dictionary structure.

Digest Algorithm


Cryptographic hash algorithm used for certificate signing (e.g., 'SHA256'). null if unavailable.

Type: string
Type: null

Lifetime


Certificate validity period in seconds. null if certificate parsing failed.

Type: integer
Type: null

From


Certificate validity start date in ISO 8601 format. null if certificate parsing failed.

Type: string
Type: null

Until


Certificate validity end date in ISO 8601 format. null if certificate parsing failed.

Type: string
Type: null

Serial


Certificate serial number. null if certificate parsing failed.

Type: integer
Type: null

Chain


Whether this certificate has an associated certificate chain. null if unavailable.

Type: boolean
Type: null

Fingerprint


SHA-256 fingerprint of the certificate in hexadecimal format. null if certificate parsing failed.

Type: string
Type: null

Expired


Whether the certificate has expired. null if certificate parsing failed.

Type: boolean
Type: null

Parsed

Type: boolean

Whether the certificate data was successfully parsed and validated.

CertificateRemovedEvent

Type: object
No Additional Properties

Id

Type: integer


Required roles: CERTIFICATE_READ