✗ Verification failed
Error: key_mismatch
Reason: manifest's embedded public key does not match published trust-anchor key
Self-verify offline
Du behøver ikke stole på dette domæne. Verificér selv:
# 1. Hent public-key + manifest
curl -fsSL https://powerquant.dk/.well-known/powerquant.pub > pq.pub
curl -fsSL https://powerquant.dk/manifests/adfa4112f50cceffaeca47094ffe3580b27f0a0f95ba02e37c7e6f4b33a6471a.json > manifest.json
# 2. Verificér med Python (cryptography)
python3 - << 'EOF'
import json, base64
from cryptography.hazmat.primitives.asymmetric.ed25519 import Ed25519PublicKey
from cryptography.exceptions import InvalidSignature
pub_b64 = open("pq.pub").read().strip()
pub = Ed25519PublicKey.from_public_bytes(base64.b64decode(pub_b64))
signed = json.load(open("manifest.json"))
canonical = json.dumps(
signed["manifest"], sort_keys=True, separators=(",", ":")
).encode()
sig = base64.b64decode(signed["signature"]["signature_b64"])
try:
pub.verify(sig, canonical)
print("Signature Verified")
except InvalidSignature:
print("INVALID")
EOFPublic-key matematik er det eneste tillidskrav. Detaljeret beskrivelse på /trust/sådan-virker-evidensen.