JWKS (JWK Set) is a JSON data structure that represents a set of JWKs. A JSON Web Key (JWK) is a JSON data structure that represents a cryptographic key.
If you are using your Open Banking certificate, you should receive your JWKS URL from the Open Banking Directory.
If you are using your eIDAS certificate, the JWK should contain the following fields:
JWK mandatory fields | Description |
---|---|
kid | The key ID that is used to match a specific key. |
kty | The cryptographic algorithm family used with the key. |
e | Contains the exponent value for the RSA public key, represented as a Base64urlUInt-encoded value. |
n | Contains the modulus value for the RSA public key, represented as a Base64urlUInt-encoded value. This can be generated using the following command: openssl x509 -noout -modulus -in signing.pem | cut -c 9- | xxd -r -p | base64 | tr '/+' '_-' | tr -d '=' |
use | The intended use of the public key (should always be set to sig ). |
x5c | The base64-encoded DER. |