3.1 Manifest Example

This is an example of a SecureElementManifest object with a single SignedSecureElement entry:

[
  {
    "payload": "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",
    "protected": "eyJhbGciOiJFUzI1NiIsImtpZCI6IlRDbnBuellCOE0zQ083NzZCeVBKMnlYM0tZbyIsInR5cCI6IkpXVCIsIng1dCNTMjU2IjoiVngyWmhCRVg0Ni16VHlpSVlFV1FQNmVGekNnOTB1Z0dqaDVlcEdCTTRPTSJ9",
    "header": {
      "uniqueId": "0123f1822c38dd7a01"
    },
    "signature": "2RUpvQyX_fRrcOrKIQ4FeHbrWtR_eEv7fi_aSXOMvQ4xdQP_sR9AqYNG2t8yFIvwdMD54L8JWozkjVbvwP1TAw"
  }
]

Decoding the protected member gives the following SignedSecureElementProtectedHeader:

{
  "typ": "JWT",
  "alg": "ES256",
  "kid": "TCnpnzYB8M3CO776ByPJ2yX3KYo",
  "x5t#S256": "Vx2ZhBEX46-zTyiIYEWQP6eFzCg90ugGjh5epGBM4OM"
}

Decoding the payload member gives the following SecureElement:

[
  {
    "version": 2,
    "model": "ATECC608C",
    "partNumber": "ATECC608C-MAH22",
    "manufacturer": {
      "organizationName": "Microchip Technology Inc",
      "organizationalUnitName": "Secure Computing Group"
    },
    "provisioner": {
      "organizationName": "Microchip Technology Inc",
      "organizationalUnitName": "Secure Computing Group"
    },
    "distributor": {
      "organizationName": "Microchip Technology Inc",
      "organizationalUnitName": "Microchip Direct"
    },
    "groupId": "359SCE55NV38H3CB",
    "provisioningTimestamp": "2024-01-15T17:22:45.000Z",
    "uniqueId": "0123f1822c38dd7a01"
  }
]

The SignedSecureElement example above can be verified with the following certificate:

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----