export type CmsAlgorithm = 'rsa-sha256' | 'ecdsa-sha256';
export interface ParsedCms {
    readonly algorithm: CmsAlgorithm;
    readonly signerCertDer: Uint8Array;
    readonly signedAttrsValueDer: Uint8Array | null;
    readonly messageDigest: Uint8Array | null;
    readonly signatureValue: Uint8Array;
}
/**
 * Re-encodes a `[0] IMPLICIT SET` of signed attributes as an explicit SET
 * (`tag 0x31`) — the bytes that were actually digested during signing.
 */
export declare function reencodeSignedAttrsAsSet(implicitBytes: Uint8Array): Uint8Array;
/**
 * Parses a detached CMS SignedData blob extracted from a PAdES `/Contents`
 * field. Throws `ToolError('CMS_PARSE_FAILED')` on any structural mismatch.
 */
export declare function parseCmsSignedData(cms: Uint8Array): ParsedCms;
/** Decode an `ECDSA-Sig-Value ::= SEQUENCE { r INTEGER, s INTEGER }`. */
export declare function decodeEcdsaSignature(der: Uint8Array): {
    r: bigint;
    s: bigint;
};
//# sourceMappingURL=cms.d.ts.map