Confidential VM vTPM non-volatile storage contents

A Confidential VM instance uses its Shielded VM vTPM's non-volatile storage to store attestation key certificates and templates. The following table details the addresses for where these elements are stored.

Index Contents
0x01c10000 Compute Engine RSA attestation key certificate.
0x01c10001

Template for the Compute Engine RSA attestation key, in the TPMT_PUBLIC structure.

For details on the TPMT_PUBLIC structure, see Trusted Platform Module Library, Part 2: Structures (PDF).

0x01c10002 Compute Engine ECC attestation key certificate.
0x01c10003

Template for the Compute Engine ECC attestation key, in the TPMT_PUBLIC structure.

For details on the TPMT_PUBLIC structure, see Trusted Platform Module Library, Part 2: Structures (PDF).