manifest.json signature (manifest.sig) and SHA-256 of all listed files for this origin.| File | Expected SHA-256 | Actual SHA-256 | Result |
|---|
This page verifies that files for this site match a signed manifest published by the operator.
manifest.json, manifest.sig, and integrity_pubkey.pem.What this achieves: It detects tampering, partial uploads, cache corruption, and unexpected file changes for the files listed in the manifest.
Important limitations:
Best practice: compare the public key fingerprint against an out-of-band source (release notes/repo/docs) when high assurance is required.