based on the Exposure Notification Server specs by Apple and Google, files published via your API at https://get.immuni.gov.it/v1/keys/[:id] are signed with an ECDSA / P-256 private key.
Please make the corresponding public key openly available so that any third party can verify that exposure notification archives downloaded via your API have not been tampered with.
Hi,
based on the Exposure Notification Server specs by Apple and Google, files published via your API at
https://get.immuni.gov.it/v1/keys/[:id]
are signed with an ECDSA / P-256 private key.Details of the key at the time of writing are:
Please make the corresponding public key openly available so that any third party can verify that exposure notification archives downloaded via your API have not been tampered with.