# `SignCore.CMS.UnsignedAttributes`
[🔗](https://github.com/utaladriz/pkcs11ex/blob/v0.1.0/lib/sign_core/cms/unsigned_attributes.ex#L1)

Builders for CMS `unsignedAttrs` — the optional set on a SignerInfo
that carries data computed *after* signing (signature timestamps,
countersignatures, etc.). The values aren't covered by the
signature math.

v1 ships only the PAdES B-T / CAdES B-T attribute:
`id-aa-signatureTimeStampToken` (RFC 3161 §3.3.4 / RFC 5126
§6.1.1) — an RFC 3161 TimeStampToken anchoring the SignerInfo's
`signature` field.

# `signature_timestamp`

```elixir
@spec signature_timestamp(binary()) ::
  {:Attribute, tuple(), [{:asn1_OPENTYPE, binary()}]}
```

Builds the `id-aa-signatureTimeStampToken` Attribute with the
supplied TimeStampToken DER (a CMS ContentInfo per RFC 3161
§2.4.2). The TST is embedded verbatim inside the Attribute's
attrValues SET — no parsing or validation happens here.

---

*Consult [api-reference.md](api-reference.md) for complete listing*