import * as pulumi from "@pulumi/pulumi";
export declare class CertManagerCertificate extends pulumi.CustomResource {
    /**
     * Get an existing CertManagerCertificate resource's state with the given name, ID, and optional extra
     * properties used to qualify the lookup.
     *
     * @param name The _unique_ name of the resulting resource.
     * @param id The _unique_ provider ID of the resource to lookup.
     * @param state Any extra arguments used during the lookup.
     * @param opts Optional settings to control the behavior of the CustomResource.
     */
    static get(name: string, id: pulumi.Input<pulumi.ID>, state?: CertManagerCertificateState, opts?: pulumi.CustomResourceOptions): CertManagerCertificate;
    /**
     * Returns true if the given object is an instance of CertManagerCertificate.  This is designed to work even
     * when multiple copies of the Pulumi SDK have been loaded into the same process.
     */
    static isInstance(obj: any): obj is CertManagerCertificate;
    /**
     * Subject alternative names (SANs) for the certificate
     */
    readonly altNames: pulumi.Output<string[]>;
    /**
     * The ID of the Certificate Manager application to issue this certificate from
     */
    readonly applicationId: pulumi.Output<string>;
    /**
     * The issued certificate in PEM format.
     */
    readonly certificate: pulumi.Output<string>;
    /**
     * The certificate chain in PEM format.
     */
    readonly certificateChain: pulumi.Output<string>;
    /**
     * The ID of the certificate request
     */
    readonly certificateRequestId: pulumi.Output<string>;
    /**
     * The common name (CN) for the certificate. Required when not using CSR
     */
    readonly commonName: pulumi.Output<string>;
    /**
     * The country (C) for the certificate (2-letter code)
     */
    readonly country: pulumi.Output<string>;
    /**
     * Certificate Signing Request (CSR) in PEM format. If provided, the certificate will be issued based on the CSR. Use Terraform's file() function to read from a file (e.g., file("./my-certificate.csr")).
     */
    readonly csr: pulumi.Output<string>;
    /**
     * Extended key usages for the certificate. Supported: client_auth, server_auth, code_signing, email_protection, ocsp_signing, time_stamping
     */
    readonly extendedKeyUsages: pulumi.Output<string[]>;
    /**
     * The key algorithm for the certificate. Supported: RSA_2048, RSA_3072, RSA_4096, EC_prime256v1, EC_secp384r1, EC_secp521r1
     */
    readonly keyAlgorithm: pulumi.Output<string>;
    /**
     * Key usages for the certificate. Supported: digital_signature, key_encipherment, non_repudiation, data_encipherment, key_agreement, key_cert_sign, crl_sign, encipher_only, decipher_only
     */
    readonly keyUsages: pulumi.Output<string[]>;
    /**
     * The locality (L) for the certificate
     */
    readonly locality: pulumi.Output<string>;
    /**
     * The not-after (expiration) date of the certificate (RFC3339 format)
     */
    readonly notAfter: pulumi.Output<string>;
    /**
     * The not-before date of the certificate (RFC3339 format)
     */
    readonly notBefore: pulumi.Output<string>;
    /**
     * The organization (O) for the certificate
     */
    readonly organization: pulumi.Output<string>;
    /**
     * The organizational unit (OU) for the certificate
     */
    readonly ou: pulumi.Output<string>;
    /**
     * The private key in PEM format (only available for direct field requests, not CSR-based).
     */
    readonly privateKey: pulumi.Output<string>;
    /**
     * The ID of the certificate profile to use for issuance
     */
    readonly profileId: pulumi.Output<string>;
    /**
     * The state/province (ST) for the certificate
     */
    readonly province: pulumi.Output<string>;
    /**
     * The serial number of the issued certificate
     */
    readonly serialNumber: pulumi.Output<string>;
    /**
     * The signature algorithm for the certificate. Supported: RSA-SHA256, RSA-SHA384, RSA-SHA512, ECDSA-SHA256, ECDSA-SHA384, ECDSA-SHA512
     */
    readonly signatureAlgorithm: pulumi.Output<string>;
    /**
     * The status of the certificate (pending, issued, failed)
     */
    readonly status: pulumi.Output<string>;
    /**
     * Maximum time to wait for certificate issuance in seconds. Defaults to 3600 (1 hour)
     */
    readonly timeoutSeconds: pulumi.Output<number>;
    /**
     * Time to live for the certificate (e.g., '30d', '90d', '1y').
     */
    readonly ttl: pulumi.Output<string>;
    /**
     * Create a CertManagerCertificate resource with the given unique name, arguments, and options.
     *
     * @param name The _unique_ name of the resource.
     * @param args The arguments to use to populate this resource's properties.
     * @param opts A bag of options that control this resource's behavior.
     */
    constructor(name: string, args: CertManagerCertificateArgs, opts?: pulumi.CustomResourceOptions);
}
/**
 * Input properties used for looking up and filtering CertManagerCertificate resources.
 */
export interface CertManagerCertificateState {
    /**
     * Subject alternative names (SANs) for the certificate
     */
    altNames?: pulumi.Input<pulumi.Input<string>[] | undefined>;
    /**
     * The ID of the Certificate Manager application to issue this certificate from
     */
    applicationId?: pulumi.Input<string | undefined>;
    /**
     * The issued certificate in PEM format.
     */
    certificate?: pulumi.Input<string | undefined>;
    /**
     * The certificate chain in PEM format.
     */
    certificateChain?: pulumi.Input<string | undefined>;
    /**
     * The ID of the certificate request
     */
    certificateRequestId?: pulumi.Input<string | undefined>;
    /**
     * The common name (CN) for the certificate. Required when not using CSR
     */
    commonName?: pulumi.Input<string | undefined>;
    /**
     * The country (C) for the certificate (2-letter code)
     */
    country?: pulumi.Input<string | undefined>;
    /**
     * Certificate Signing Request (CSR) in PEM format. If provided, the certificate will be issued based on the CSR. Use Terraform's file() function to read from a file (e.g., file("./my-certificate.csr")).
     */
    csr?: pulumi.Input<string | undefined>;
    /**
     * Extended key usages for the certificate. Supported: client_auth, server_auth, code_signing, email_protection, ocsp_signing, time_stamping
     */
    extendedKeyUsages?: pulumi.Input<pulumi.Input<string>[] | undefined>;
    /**
     * The key algorithm for the certificate. Supported: RSA_2048, RSA_3072, RSA_4096, EC_prime256v1, EC_secp384r1, EC_secp521r1
     */
    keyAlgorithm?: pulumi.Input<string | undefined>;
    /**
     * Key usages for the certificate. Supported: digital_signature, key_encipherment, non_repudiation, data_encipherment, key_agreement, key_cert_sign, crl_sign, encipher_only, decipher_only
     */
    keyUsages?: pulumi.Input<pulumi.Input<string>[] | undefined>;
    /**
     * The locality (L) for the certificate
     */
    locality?: pulumi.Input<string | undefined>;
    /**
     * The not-after (expiration) date of the certificate (RFC3339 format)
     */
    notAfter?: pulumi.Input<string | undefined>;
    /**
     * The not-before date of the certificate (RFC3339 format)
     */
    notBefore?: pulumi.Input<string | undefined>;
    /**
     * The organization (O) for the certificate
     */
    organization?: pulumi.Input<string | undefined>;
    /**
     * The organizational unit (OU) for the certificate
     */
    ou?: pulumi.Input<string | undefined>;
    /**
     * The private key in PEM format (only available for direct field requests, not CSR-based).
     */
    privateKey?: pulumi.Input<string | undefined>;
    /**
     * The ID of the certificate profile to use for issuance
     */
    profileId?: pulumi.Input<string | undefined>;
    /**
     * The state/province (ST) for the certificate
     */
    province?: pulumi.Input<string | undefined>;
    /**
     * The serial number of the issued certificate
     */
    serialNumber?: pulumi.Input<string | undefined>;
    /**
     * The signature algorithm for the certificate. Supported: RSA-SHA256, RSA-SHA384, RSA-SHA512, ECDSA-SHA256, ECDSA-SHA384, ECDSA-SHA512
     */
    signatureAlgorithm?: pulumi.Input<string | undefined>;
    /**
     * The status of the certificate (pending, issued, failed)
     */
    status?: pulumi.Input<string | undefined>;
    /**
     * Maximum time to wait for certificate issuance in seconds. Defaults to 3600 (1 hour)
     */
    timeoutSeconds?: pulumi.Input<number | undefined>;
    /**
     * Time to live for the certificate (e.g., '30d', '90d', '1y').
     */
    ttl?: pulumi.Input<string | undefined>;
}
/**
 * The set of arguments for constructing a CertManagerCertificate resource.
 */
export interface CertManagerCertificateArgs {
    /**
     * Subject alternative names (SANs) for the certificate
     */
    altNames?: pulumi.Input<pulumi.Input<string>[] | undefined>;
    /**
     * The ID of the Certificate Manager application to issue this certificate from
     */
    applicationId: pulumi.Input<string>;
    /**
     * The common name (CN) for the certificate. Required when not using CSR
     */
    commonName?: pulumi.Input<string | undefined>;
    /**
     * The country (C) for the certificate (2-letter code)
     */
    country?: pulumi.Input<string | undefined>;
    /**
     * Certificate Signing Request (CSR) in PEM format. If provided, the certificate will be issued based on the CSR. Use Terraform's file() function to read from a file (e.g., file("./my-certificate.csr")).
     */
    csr?: pulumi.Input<string | undefined>;
    /**
     * Extended key usages for the certificate. Supported: client_auth, server_auth, code_signing, email_protection, ocsp_signing, time_stamping
     */
    extendedKeyUsages?: pulumi.Input<pulumi.Input<string>[] | undefined>;
    /**
     * The key algorithm for the certificate. Supported: RSA_2048, RSA_3072, RSA_4096, EC_prime256v1, EC_secp384r1, EC_secp521r1
     */
    keyAlgorithm?: pulumi.Input<string | undefined>;
    /**
     * Key usages for the certificate. Supported: digital_signature, key_encipherment, non_repudiation, data_encipherment, key_agreement, key_cert_sign, crl_sign, encipher_only, decipher_only
     */
    keyUsages?: pulumi.Input<pulumi.Input<string>[] | undefined>;
    /**
     * The locality (L) for the certificate
     */
    locality?: pulumi.Input<string | undefined>;
    /**
     * The organization (O) for the certificate
     */
    organization?: pulumi.Input<string | undefined>;
    /**
     * The organizational unit (OU) for the certificate
     */
    ou?: pulumi.Input<string | undefined>;
    /**
     * The ID of the certificate profile to use for issuance
     */
    profileId: pulumi.Input<string>;
    /**
     * The state/province (ST) for the certificate
     */
    province?: pulumi.Input<string | undefined>;
    /**
     * The signature algorithm for the certificate. Supported: RSA-SHA256, RSA-SHA384, RSA-SHA512, ECDSA-SHA256, ECDSA-SHA384, ECDSA-SHA512
     */
    signatureAlgorithm?: pulumi.Input<string | undefined>;
    /**
     * Maximum time to wait for certificate issuance in seconds. Defaults to 3600 (1 hour)
     */
    timeoutSeconds?: pulumi.Input<number | undefined>;
    /**
     * Time to live for the certificate (e.g., '30d', '90d', '1y').
     */
    ttl?: pulumi.Input<string | undefined>;
}
//# sourceMappingURL=certManagerCertificate.d.ts.map