Start to use EBSI’s Trusted Nodes List
info
Local verification is recommended to prevent any potential interference from third parties during the verification of lists.
Start local verification
Please follow the steps to verify the lists locally:
Select the Environment you want to work with
Step 1: Prerequisites
ADownload the files from the three sources, the EBSI Hub, BitBucket and Gitlab.
| Source | Nodes list | First signee | Second signee |
|---|---|---|---|
| EBSI Hub directory | JSON Nodes List 1 | Signature Public Key | Signature Public Key |
| Bitbucket directory | JSON Nodes List 2 | Signature Public Key | Signature Public Key |
| Public Gitlab directory | JSON Nodes List 3 | Signature Public Key | Signature Public Key |
BInstall the right tool to verify the signatures
Download and install the open source gpg libraries to verify the signatures.
For windows:
https://www.gpg4win.org/download.htmlFor MacOS:
https://gpgtools.org/gpgpsuite.htmlFor Linux:
You don’t need to install anything as this is pre-installed on all common Linux distribution.
CAfter downloading all the files and installing the GPG tool, disconnect from internet to prevent any potential interference from third parties during the verification process.
Step 2: Compare files
Check if the files are identical by comparing them in the same directory with the following command:
bash: cmp --silent file 1 file 2 && echo '### SUCCESS:Files Are Identical!
###' II echo '### WARNING: Files Are Different! ###'
###' II echo '### WARNING: Files Are Different! ###'
Step 3: Verify signatures
AImport the keys
Import the signature libraries in the tools downloaded in step 1.B
gpg --import gpg-key1;
gpg --import gpg-key2;
BVerify signature
Verify the signature libraries in the tools downloaded in step 1.B
gpg --verify node-json-1.sig node.json
gpg --verify node-json-2.sig node.json
If the signature verifies you should receive the following message:
gpg: Signature made Mar 12 Sep 2023 14:27:25 EEST
gpg: using RSA key E7CBD9F08999C846FED1E3F0EA431FE717D1862C
gpg: Good signature from "Test Key #1 RSA 4096 user" [ultimate]
gpg: using RSA key E7CBD9F08999C846FED1E3F0EA431FE717D1862C
gpg: Good signature from "Test Key #1 RSA 4096 user" [ultimate]
If the signature doesn’t verify you will have encountered an issue
If you receive an error please open a ticket with a print screen of the output of the command
Contact help desk