Verification instructions

To find instructions on how to verify the integrity of the file you have downloaded, navigate to the respective section that outlines the steps needed for that specific file.

Concordium Desktop Wallet

Linux

AppImage

Verify checksum of download

In a terminal:

1. Navigate to the download.

2. Then paste the first line of the following block into the terminal.

3. Verify that the output matches the second line in the block.

$sha256sum concordium-desktop-wallet-1.5.0.AppImage
a04dcab599799533d8e35765a656a0ad938074d5f267f1829c5aa8258376b4e8

Verify download with signature

To verify that the downloaded file is an official Concordium release, you can verify that the file is signed by Concordium. To do this, you need a signature of the release and a public key.

• Download signature

• Download public key

With the signature, the public key, and the downloaded file all in the same directory, execute the following steps to verify that the file has been signed by Concordium.

In a terminal:

1. Navigate to the directory containing the assets needed to verify.

2. Then paste the first line of the following block into the terminal

3. The command outputs Signature Verified Successfully as a result, as inidicated by the second line in the block.

$openssl pkeyutl -verify -pubin -inkey concordium-desktop-wallet-pubkey.pem -rawin -in concordium-desktop-wallet-1.5.0.AppImage -sigfile concordium-desktop-wallet-1.5.0.AppImage.sig
Signature Verified Successfully

Note that this only works for openssl version 3.0.0 and up.

Debian package

Verify checksum of download

In a terminal:

1. Navigate to the download.

2. Then paste the first line of the following block into the terminal.

3. Verify that the output matches the second line in the block.

$sha256sum concordium-desktop-wallet-1.5.0.deb
ef0237f30e1c435323ef2eff2df82a23ffbb54b7c0b329666a07c78fb61119f1

Verify download with signature

To verify that the downloaded file is an official Concordium release, you can verify that the file is signed by Concordium. To do this, you need a signature of the release and a public key.

• Download signature

• Download public key

With the signature, the public key, and the downloaded file all in the same directory, execute the following steps to verify that the file has been signed by Concordium.

In a terminal:

1. Navigate to the directory containing the assets needed to verify.

2. Then paste the first line of the following block into the terminal

3. The command outputs Signature Verified Successfully as a result, as inidicated by the second line in the block.

$openssl pkeyutl -verify -pubin -inkey concordium-desktop-wallet-pubkey.pem -rawin -in concordium-desktop-wallet-1.5.0.deb -sigfile concordium-desktop-wallet-1.5.0.deb.sig
Signature Verified Successfully

Note that this only works for openssl version 3.0.0 and up.

RPM

Verify checksum of download

In a terminal:

1. Navigate to the download.

2. Then paste the first line of the following block into the terminal.

3. Verify that the output matches the second line in the block.

$sha256sum concordium-desktop-wallet-1.5.0.rpm
845f375c728b14ce13400869001b58c894510454dd7af8fa95d9538b5d8ef2d4

Verify download with signature

To verify that the downloaded file is an official Concordium release, you can verify that the file is signed by Concordium. To do this, you need a signature of the release and a public key.

• Download signature

• Download public key

With the signature, the public key, and the downloaded file all in the same directory, execute the following steps to verify that the file has been signed by Concordium.

In a terminal:

1. Navigate to the directory containing the assets needed to verify.

2. Then paste the first line of the following block into the terminal

3. The command outputs Signature Verified Successfully as a result, as inidicated by the second line in the block.

$openssl pkeyutl -verify -pubin -inkey concordium-desktop-wallet-pubkey.pem -rawin -in concordium-desktop-wallet-1.5.0.rpm -sigfile concordium-desktop-wallet-1.5.0.rpm.sig
Signature Verified Successfully

Note that this only works for openssl version 3.0.0 and up.

Automatic updates

When the desktop wallet updates itself, it performs the necessary steps to verify both the checksum and signature of the downloaded update. If verification is unsuccessful, the update is rejected.

Concordium Client

Linux

Verify checksum of download

In a terminal:

1. Navigate to the download.

2. Then paste the first line of the following block into the terminal.

3. Verify that the output matches the second line in the block.

$sha256sum concordium-client_6.0.1-0
6f5e1480ab26ffdad2770a4882ff4659c9286c48d81a0e8749ef7666ce8ae7d2

Linux

Verify checksum of download

In a terminal:

1. Navigate to the download.

2. Then paste the first line of the following block into the terminal.

3. Verify that the output matches the second line in the block.

$sha256sum cargo-concordium_2.8.0
ea3f603e2a921181cdf323604066444378a955c55e82b206a7d169bf636fa75d

Node Debian package

Verify checksum of download

In a terminal:

1. Navigate to the download.

2. Then paste the first line of the following block into the terminal.

3. Verify that the output matches the second line in the block.

$sha256sum concordium-mainnet-node_6.0.4-0_amd64.deb
0c236d9a0d87d1dbc44e979155208aecd6f18051ca7baf02a2603b8a9599c454

Mainnet genesis block

Verify checksum of download

In a terminal:

1. Navigate to the download.

2. Then paste the first line of the following block into the terminal.

3. Verify that the output matches the second line in the block.

Windows

$Get-FileHash genesis.dat -Algorithm SHA256
5fe6a62824d5b0dba6143243e90987ddf3e15cca079f21992de04d078d9ea6dc

MacOS

$shasum -a 256 genesis.dat
5fe6a62824d5b0dba6143243e90987ddf3e15cca079f21992de04d078d9ea6dc

Linux

$sha256sum genesis.dat
5fe6a62824d5b0dba6143243e90987ddf3e15cca079f21992de04d078d9ea6dc

previous

Release notes

next

Learn about Concordium