-
Notifications
You must be signed in to change notification settings - Fork 21
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request #848 from sigstore/update-roots
Update staging and public good embedded starter roots
- Loading branch information
Showing
2 changed files
with
206 additions
and
155 deletions.
There are no files selected for viewing
193 changes: 101 additions & 92 deletions
193
sigstore-java/src/main/resources/dev/sigstore/tuf/sigstore-tuf-root/root.json
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,156 +1,165 @@ | ||
| { | ||
| "signatures": [ | ||
| { | ||
| "keyid": "6f260089d5923daf20166ca657c543af618346ab971884a99962b01988bbe0c3", | ||
| "sig": "30460221008ab1f6f17d4f9e6d7dcf1c88912b6b53cc10388644ae1f09bc37a082cd06003e022100e145ef4c7b782d4e8107b53437e669d0476892ce999903ae33d14448366996e7" | ||
| }, | ||
| { | ||
| "keyid": "e71a54d543835ba86adad9460379c7641fb8726d164ea766801a1c522aba7ea2", | ||
| "sig": "3045022100c768b2f86da99569019c160a081da54ae36c34c0a3120d3cb69b53b7d113758e02204f671518f617b20d46537fae6c3b63bae8913f4f1962156105cc4f019ac35c6a" | ||
| }, | ||
| { | ||
| "keyid": "22f4caec6d8e6f9555af66b3d4c3cb06a3bb23fdc7e39c916c61f462e6f52b06", | ||
| "sig": "3045022100b4434e6995d368d23e74759acd0cb9013c83a5d3511f0f997ec54c456ae4350a022015b0e265d182d2b61dc74e155d98b3c3fbe564ba05286aa14c8df02c9b756516" | ||
| }, | ||
| { | ||
| "keyid": "61643838125b440b40db6942f5cb5a31c0dc04368316eb2aaa58b95904a58222", | ||
| "sig": "304502210082c58411d989eb9f861410857d42381590ec9424dbdaa51e78ed13515431904e0220118185da6a6c2947131c17797e2bb7620ce26e5f301d1ceac5f2a7e58f9dcf2e" | ||
| }, | ||
| { | ||
| "keyid": "a687e5bf4fab82b0ee58d46e05c9535145a2c9afb458f43d42b45ca0fdce2a70", | ||
| "sig": "3046022100c78513854cae9c32eaa6b88e18912f48006c2757a258f917312caba75948eb9e022100d9e1b4ce0adfe9fd2e2148d7fa27a2f40ba1122bd69da7612d8d1776b013c91d" | ||
| }, | ||
| { | ||
| "keyid": "fdfa83a07b5a83589b87ded41f77f39d232ad91f7cce52868dacd06ba089849f", | ||
| "sig": "3045022056483a2d5d9ea9cec6e11eadfb33c484b614298faca15acf1c431b11ed7f734c022100d0c1d726af92a87e4e66459ca5adf38a05b44e1f94318423f954bae8bca5bb2e" | ||
| }, | ||
| { | ||
| "keyid": "e2f59acb9488519407e18cbfc9329510be03c04aca9929d2f0301343fec85523", | ||
| "sig": "3046022100d004de88024c32dc5653a9f4843cfc5215427048ad9600d2cf9c969e6edff3d2022100d9ebb798f5fc66af10899dece014a8628ccf3c5402cd4a4270207472f8f6e712" | ||
| }, | ||
| { | ||
| "keyid": "3c344aa068fd4cc4e87dc50b612c02431fbc771e95003993683a2b0bf260cf0e", | ||
| "sig": "3046022100b7b09996c45ca2d4b05603e56baefa29718a0b71147cf8c6e66349baa61477df022100c4da80c717b4fa7bba0fd5c72da8a0499358b01358b2309f41d1456ea1e7e1d9" | ||
| }, | ||
| { | ||
| "keyid": "ec81669734e017996c5b85f3d02c3de1dd4637a152019fe1af125d2f9368b95e", | ||
| "sig": "3046022100be9782c30744e411a82fa85b5138d601ce148bc19258aec64e7ec24478f38812022100caef63dcaf1a4b9a500d3bd0e3f164ec18f1b63d7a9460d9acab1066db0f016d" | ||
| }, | ||
| { | ||
| "keyid": "1e1d65ce98b10addad4764febf7dda2d0436b3d3a3893579c0dddaea20e54849", | ||
| "sig": "30450220746ec3f8534ce55531d0d01ff64964ef440d1e7d2c4c142409b8e9769f1ada6f022100e3b929fcd93ea18feaa0825887a7210489879a66780c07a83f4bd46e2f09ab3b" | ||
| } | ||
| ], | ||
| "signed": { | ||
| "_type": "root", | ||
| "spec_version": "1.0", | ||
| "version": 5, | ||
| "expires": "2023-04-18T18:13:43Z", | ||
| "consistent_snapshot": true, | ||
| "expires": "2025-02-19T08:04:32Z", | ||
| "keys": { | ||
| "25a0eb450fd3ee2bd79218c963dce3f1cc6118badf251bf149f0bd07d5cabe99": { | ||
| "keytype": "ecdsa-sha2-nistp256", | ||
| "scheme": "ecdsa-sha2-nistp256", | ||
| "22f4caec6d8e6f9555af66b3d4c3cb06a3bb23fdc7e39c916c61f462e6f52b06": { | ||
| "keyid_hash_algorithms": [ | ||
| "sha256", | ||
| "sha512" | ||
| ], | ||
| "keytype": "ecdsa", | ||
| "keyval": { | ||
| "public": "-----BEGIN PUBLIC KEY-----\nMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEEXsz3SZXFb8jMV42j6pJlyjbjR8K\nN3Bwocexq6LMIb5qsWKOQvLN16NUefLc4HswOoumRsVVaajSpQS6fobkRw==\n-----END PUBLIC KEY-----\n" | ||
| } | ||
| }, | ||
| "2e61cd0cbf4a8f45809bda9f7f78c0d33ad11842ff94ae340873e2664dc843de": { | ||
| "keytype": "ecdsa-sha2-nistp256", | ||
| "public": "-----BEGIN PUBLIC KEY-----\nMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEzBzVOmHCPojMVLSI364WiiV8NPrD\n6IgRxVliskz/v+y3JER5mcVGcONliDcWMC5J2lfHmjPNPhb4H7xm8LzfSA==\n-----END PUBLIC KEY-----\n" | ||
| }, | ||
| "scheme": "ecdsa-sha2-nistp256", | ||
| "keyid_hash_algorithms": [ | ||
| "sha256", | ||
| "sha512" | ||
| ], | ||
| "keyval": { | ||
| "public": "-----BEGIN PUBLIC KEY-----\nMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE0ghrh92Lw1Yr3idGV5WqCtMDB8Cx\n+D8hdC4w2ZLNIplVRoVGLskYa3gheMyOjiJ8kPi15aQ2//7P+oj7UvJPGw==\n-----END PUBLIC KEY-----\n" | ||
| } | ||
| "x-tuf-on-ci-keyowner": "@santiagotorres" | ||
| }, | ||
| "45b283825eb184cabd582eb17b74fc8ed404f68cf452acabdad2ed6f90ce216b": { | ||
| "keytype": "ecdsa-sha2-nistp256", | ||
| "scheme": "ecdsa-sha2-nistp256", | ||
| "61643838125b440b40db6942f5cb5a31c0dc04368316eb2aaa58b95904a58222": { | ||
| "keyid_hash_algorithms": [ | ||
| "sha256", | ||
| "sha512" | ||
| ], | ||
| "keytype": "ecdsa", | ||
| "keyval": { | ||
| "public": "-----BEGIN PUBLIC KEY-----\nMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAELrWvNt94v4R085ELeeCMxHp7PldF\n0/T1GxukUh2ODuggLGJE0pc1e8CSBf6CS91Fwo9FUOuRsjBUld+VqSyCdQ==\n-----END PUBLIC KEY-----\n" | ||
| } | ||
| }, | ||
| "7f7513b25429a64473e10ce3ad2f3da372bbdd14b65d07bbaf547e7c8bbbe62b": { | ||
| "keytype": "ecdsa-sha2-nistp256", | ||
| "public": "-----BEGIN PUBLIC KEY-----\nMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEinikSsAQmYkNeH5eYq/CnIzLaacO\nxlSaawQDOwqKy/tCqxq5xxPSJc21K4WIhs9GyOkKfzueY3GILzcMJZ4cWw==\n-----END PUBLIC KEY-----\n" | ||
| }, | ||
| "scheme": "ecdsa-sha2-nistp256", | ||
| "x-tuf-on-ci-keyowner": "@bobcallaway" | ||
| }, | ||
| "6f260089d5923daf20166ca657c543af618346ab971884a99962b01988bbe0c3": { | ||
| "keyid_hash_algorithms": [ | ||
| "sha256", | ||
| "sha512" | ||
| ], | ||
| "keytype": "ecdsa", | ||
| "keyval": { | ||
| "public": "-----BEGIN PUBLIC KEY-----\nMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEinikSsAQmYkNeH5eYq/CnIzLaacO\nxlSaawQDOwqKy/tCqxq5xxPSJc21K4WIhs9GyOkKfzueY3GILzcMJZ4cWw==\n-----END PUBLIC KEY-----\n" | ||
| } | ||
| }, | ||
| "e1863ba02070322ebc626dcecf9d881a3a38c35c3b41a83765b6ad6c37eaec2a": { | ||
| "keytype": "ecdsa-sha2-nistp256", | ||
| "public": "-----BEGIN PUBLIC KEY-----\nMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEy8XKsmhBYDI8Jc0GwzBxeKax0cm5\nSTKEU65HPFunUn41sT8pi0FjM4IkHz/YUmwmLUO0Wt7lxhj6BkLIK4qYAw==\n-----END PUBLIC KEY-----\n" | ||
| }, | ||
| "scheme": "ecdsa-sha2-nistp256", | ||
| "x-tuf-on-ci-keyowner": "@dlorenc" | ||
| }, | ||
| "7247f0dbad85b147e1863bade761243cc785dcb7aa410e7105dd3d2b61a36d2c": { | ||
| "keyid_hash_algorithms": [ | ||
| "sha256", | ||
| "sha512" | ||
| ], | ||
| "keytype": "ecdsa", | ||
| "keyval": { | ||
| "public": "-----BEGIN PUBLIC KEY-----\nMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEWRiGr5+j+3J5SsH+Ztr5nE2H2wO7\nBV+nO3s93gLca18qTOzHY1oWyAGDykMSsGTUBSt9D+An0KfKsD2mfSM42Q==\n-----END PUBLIC KEY-----\n" | ||
| } | ||
| }, | ||
| "f5312f542c21273d9485a49394386c4575804770667f2ddb59b3bf0669fddd2f": { | ||
| "keytype": "ecdsa-sha2-nistp256", | ||
| }, | ||
| "scheme": "ecdsa-sha2-nistp256", | ||
| "x-tuf-on-ci-online-uri": "gcpkms://projects/sigstore-root-signing/locations/global/keyRings/root/cryptoKeys/timestamp" | ||
| }, | ||
| "a687e5bf4fab82b0ee58d46e05c9535145a2c9afb458f43d42b45ca0fdce2a70": { | ||
| "keyid_hash_algorithms": [ | ||
| "sha256", | ||
| "sha512" | ||
| ], | ||
| "keytype": "ecdsa", | ||
| "keyval": { | ||
| "public": "-----BEGIN PUBLIC KEY-----\nMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEzBzVOmHCPojMVLSI364WiiV8NPrD\n6IgRxVliskz/v+y3JER5mcVGcONliDcWMC5J2lfHmjPNPhb4H7xm8LzfSA==\n-----END PUBLIC KEY-----\n" | ||
| } | ||
| }, | ||
| "ff51e17fcf253119b7033f6f57512631da4a0969442afcf9fc8b141c7f2be99c": { | ||
| "keytype": "ecdsa-sha2-nistp256", | ||
| "public": "-----BEGIN PUBLIC KEY-----\nMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAE0ghrh92Lw1Yr3idGV5WqCtMDB8Cx\n+D8hdC4w2ZLNIplVRoVGLskYa3gheMyOjiJ8kPi15aQ2//7P+oj7UvJPGw==\n-----END PUBLIC KEY-----\n" | ||
| }, | ||
| "scheme": "ecdsa-sha2-nistp256", | ||
| "x-tuf-on-ci-keyowner": "@joshuagl" | ||
| }, | ||
| "e71a54d543835ba86adad9460379c7641fb8726d164ea766801a1c522aba7ea2": { | ||
| "keyid_hash_algorithms": [ | ||
| "sha256", | ||
| "sha512" | ||
| ], | ||
| "keytype": "ecdsa", | ||
| "keyval": { | ||
| "public": "-----BEGIN PUBLIC KEY-----\nMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEy8XKsmhBYDI8Jc0GwzBxeKax0cm5\nSTKEU65HPFunUn41sT8pi0FjM4IkHz/YUmwmLUO0Wt7lxhj6BkLIK4qYAw==\n-----END PUBLIC KEY-----\n" | ||
| } | ||
| "public": "-----BEGIN PUBLIC KEY-----\nMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEEXsz3SZXFb8jMV42j6pJlyjbjR8K\nN3Bwocexq6LMIb5qsWKOQvLN16NUefLc4HswOoumRsVVaajSpQS6fobkRw==\n-----END PUBLIC KEY-----\n" | ||
| }, | ||
| "scheme": "ecdsa-sha2-nistp256", | ||
| "x-tuf-on-ci-keyowner": "@mnm678" | ||
| } | ||
| }, | ||
| "roles": { | ||
| "root": { | ||
| "keyids": [ | ||
| "ff51e17fcf253119b7033f6f57512631da4a0969442afcf9fc8b141c7f2be99c", | ||
| "25a0eb450fd3ee2bd79218c963dce3f1cc6118badf251bf149f0bd07d5cabe99", | ||
| "f5312f542c21273d9485a49394386c4575804770667f2ddb59b3bf0669fddd2f", | ||
| "7f7513b25429a64473e10ce3ad2f3da372bbdd14b65d07bbaf547e7c8bbbe62b", | ||
| "2e61cd0cbf4a8f45809bda9f7f78c0d33ad11842ff94ae340873e2664dc843de" | ||
| "6f260089d5923daf20166ca657c543af618346ab971884a99962b01988bbe0c3", | ||
| "e71a54d543835ba86adad9460379c7641fb8726d164ea766801a1c522aba7ea2", | ||
| "22f4caec6d8e6f9555af66b3d4c3cb06a3bb23fdc7e39c916c61f462e6f52b06", | ||
| "61643838125b440b40db6942f5cb5a31c0dc04368316eb2aaa58b95904a58222", | ||
| "a687e5bf4fab82b0ee58d46e05c9535145a2c9afb458f43d42b45ca0fdce2a70" | ||
| ], | ||
| "threshold": 3 | ||
| }, | ||
| "snapshot": { | ||
| "keyids": [ | ||
| "45b283825eb184cabd582eb17b74fc8ed404f68cf452acabdad2ed6f90ce216b" | ||
| "7247f0dbad85b147e1863bade761243cc785dcb7aa410e7105dd3d2b61a36d2c" | ||
| ], | ||
| "threshold": 1 | ||
| "threshold": 1, | ||
| "x-tuf-on-ci-expiry-period": 3650, | ||
| "x-tuf-on-ci-signing-period": 365 | ||
| }, | ||
| "targets": { | ||
| "keyids": [ | ||
| "ff51e17fcf253119b7033f6f57512631da4a0969442afcf9fc8b141c7f2be99c", | ||
| "25a0eb450fd3ee2bd79218c963dce3f1cc6118badf251bf149f0bd07d5cabe99", | ||
| "f5312f542c21273d9485a49394386c4575804770667f2ddb59b3bf0669fddd2f", | ||
| "7f7513b25429a64473e10ce3ad2f3da372bbdd14b65d07bbaf547e7c8bbbe62b", | ||
| "2e61cd0cbf4a8f45809bda9f7f78c0d33ad11842ff94ae340873e2664dc843de" | ||
| "6f260089d5923daf20166ca657c543af618346ab971884a99962b01988bbe0c3", | ||
| "e71a54d543835ba86adad9460379c7641fb8726d164ea766801a1c522aba7ea2", | ||
| "22f4caec6d8e6f9555af66b3d4c3cb06a3bb23fdc7e39c916c61f462e6f52b06", | ||
| "61643838125b440b40db6942f5cb5a31c0dc04368316eb2aaa58b95904a58222", | ||
| "a687e5bf4fab82b0ee58d46e05c9535145a2c9afb458f43d42b45ca0fdce2a70" | ||
| ], | ||
| "threshold": 3 | ||
| }, | ||
| "timestamp": { | ||
| "keyids": [ | ||
| "e1863ba02070322ebc626dcecf9d881a3a38c35c3b41a83765b6ad6c37eaec2a" | ||
| "7247f0dbad85b147e1863bade761243cc785dcb7aa410e7105dd3d2b61a36d2c" | ||
| ], | ||
| "threshold": 1 | ||
| "threshold": 1, | ||
| "x-tuf-on-ci-expiry-period": 7, | ||
| "x-tuf-on-ci-signing-period": 4 | ||
| } | ||
| }, | ||
| "consistent_snapshot": true | ||
| }, | ||
| "signatures": [ | ||
| { | ||
| "keyid": "ff51e17fcf253119b7033f6f57512631da4a0969442afcf9fc8b141c7f2be99c", | ||
| "sig": "3045022100fc1c2be509ce50ea917bbad1d9efe9d96c8c2ebea04af2717aa3d9c6fe617a75022012eef282a19f2d8bd4818aa333ef48a06489f49d4d34a20b8fe8fc867bb25a7a" | ||
| }, | ||
| { | ||
| "keyid": "25a0eb450fd3ee2bd79218c963dce3f1cc6118badf251bf149f0bd07d5cabe99", | ||
| "sig": "30450221008a4392ae5057fc00778b651e61fea244766a4ae58db84d9f1d3810720ab0f3b702207c49e59e8031318caf02252ecea1281cecc1e5986c309a9cef61f455ecf7165d" | ||
| }, | ||
| { | ||
| "keyid": "7f7513b25429a64473e10ce3ad2f3da372bbdd14b65d07bbaf547e7c8bbbe62b", | ||
| "sig": "3046022100da1b8dc5d53aaffbbfac98de3e23ee2d2ad3446a7bed09fac0f88bae19be2587022100b681c046afc3919097dfe794e0d819be891e2e850aade315bec06b0c4dea221b" | ||
| }, | ||
| { | ||
| "keyid": "2e61cd0cbf4a8f45809bda9f7f78c0d33ad11842ff94ae340873e2664dc843de", | ||
| "sig": "3046022100b534e0030e1b271133ecfbdf3ba9fbf3becb3689abea079a2150afbb63cdb7c70221008c39a718fd9495f249b4ab8788d5b9dc269f0868dbe38b272f48207359d3ded9" | ||
| }, | ||
| { | ||
| "keyid": "2f64fb5eac0cf94dd39bb45308b98920055e9a0d8e012a7220787834c60aef97", | ||
| "sig": "3045022100fc1c2be509ce50ea917bbad1d9efe9d96c8c2ebea04af2717aa3d9c6fe617a75022012eef282a19f2d8bd4818aa333ef48a06489f49d4d34a20b8fe8fc867bb25a7a" | ||
| }, | ||
| { | ||
| "keyid": "eaf22372f417dd618a46f6c627dbc276e9fd30a004fc94f9be946e73f8bd090b", | ||
| "sig": "30450221008a4392ae5057fc00778b651e61fea244766a4ae58db84d9f1d3810720ab0f3b702207c49e59e8031318caf02252ecea1281cecc1e5986c309a9cef61f455ecf7165d" | ||
| }, | ||
| { | ||
| "keyid": "f505595165a177a41750a8e864ed1719b1edfccd5a426fd2c0ffda33ce7ff209", | ||
| "sig": "3046022100da1b8dc5d53aaffbbfac98de3e23ee2d2ad3446a7bed09fac0f88bae19be2587022100b681c046afc3919097dfe794e0d819be891e2e850aade315bec06b0c4dea221b" | ||
| }, | ||
| { | ||
| "keyid": "75e867ab10e121fdef32094af634707f43ddd79c6bab8ad6c5ab9f03f4ea8c90", | ||
| "sig": "3046022100b534e0030e1b271133ecfbdf3ba9fbf3becb3689abea079a2150afbb63cdb7c70221008c39a718fd9495f249b4ab8788d5b9dc269f0868dbe38b272f48207359d3ded9" | ||
| } | ||
| ] | ||
| "spec_version": "1.0", | ||
| "version": 10, | ||
| "x-tuf-on-ci-expiry-period": 182, | ||
| "x-tuf-on-ci-signing-period": 31 | ||
| } | ||
| } |
Oops, something went wrong.