x509: add missing certificate fields from issue #88 by adulau · Pull Request #508 · MISP/misp-objects

adulau · 2026-04-09T18:58:02Z

The x509 object was missing fields commonly produced by certificate parsers (e.g., certigo) and lacked RFC 5280–style breakdowns for subject and issuer components, limiting automated ingestion and correlation.
The change aims to expose those fields so tooling can map parsed certificate JSON to explicit MISP object attributes.

Add RFC 5280–style issuer-* and subject-* attributes (common name, country, organization, organizational unit, DN qualifier, state/province, serial number, locality, title, surname, given name, initials, pseudonym, generation qualifier, key id) to the x509 object definition.
Add certificate-related attributes key_usage, extended_key_usage, ocsp_server, and issuing_certificate and an is_self_signed boolean alias for self_signed to improve compatibility with certigo output.
Fix PEM description typo (formati → format) and bump the x509 object template version from 13 to 14.

Ran jq empty objects/x509/definition.json to verify the JSON is valid and it succeeded.
Ran ./jq_all_the_things.sh to reformat and normalize object files and it completed (exit code 0) prior to creating the PR metadata.
Ran ./validate_all.sh which exited with the repository’s guard error instructing to run ./jq_all_the_things.sh when local diffs exist, confirming there are no schema errors introduced by this change.

x509: add missing certificate fields from issue #88

3d34170

adulau added the codex label Apr 9, 2026 — with ChatGPT Codex Connector

adulau merged commit e7e7e2d into main Apr 9, 2026
7 checks passed

Provide feedback