Skip to content
  • There are no suggestions because the search field is empty.

Digital signature digest file

Capella includes SHA-256 and MD5 digest files with each order so users can verify data authenticity and integrity after download.

Capella provides a way for customers to verify that that their data products have not been tampered with from the time of generation until the time of receipt by providing an additional digest file in JSON format. The digest file contains two cryptographic hashes (SHA-256 & MD5) for each of the data and metadata files generated. Like other assets, the manifest file can be downloaded individually and is also contained in the full asset bundle.

Example

File name:

File contents:

How to use

  1. Use the commands below (based on your machine's OS) to obtain the cryptographic hashes for one of the data files (ex: the image .tif file).
  2. Compare the two hash values that were generated to the values in the digest file for the corresponding data file name.
  3. If the values match then the data has not been tampered with from the time of generation. If they do not match then it is advised that you do not open the file.

SHA-256

For Windows:

certutil -hashfile [file location] SHA256

For Linux:

sha256sum [file location]

For macOS:

shasum -a 256 [file location]

MD5

For Windows:

certutil -hashfile [file location] MD5

For Linux:

For macOS:

 

Availability in Console

The digital signature file is available for download in the Console UI in the same way as other assets for a given collect, on the Order Details page: