Notation

As usually, I'thou updating the mail with more than information equally soon as I have access to the said information. Things might change. Some keys got leaked or someone has admission to the portal and can issue certificates for bogus people. Or perchance it'south a glitch in the Matrix. Stay tuned!

Also, call up in that location are no private keys here and at that place volition never be. Nosotros wouldn't want another takedown asking against me, wouldn't we? I already have a friend, that bald guy, what'south his name … Biff Jizzos or something. I don't demand more than.

Patently, the private keys used to sign the European union Digital Covid-19 (GreenPass) certificates were leaked today.

That, or Adolf Hitler just got 2 doses of the Pfizer vaccine. He has been granted at present admission to all indoor events that are off-limits to the people that were not vaccinated. I am joking but I am not joking.

Permit's inspect.

Updates

  • North Macedonia twenty.71.89.119/pinga.wellness (now redirects to vakcinacija.mk), signs certificates with the key id KjE8h58xh7A=, revoked on many EU apps.
  • Vietnam 171.244.0.200/ca.gov.vn, signs certificates with the key id Pux04KboTfM=, does not validate on whatever EU apps.
  • Laos 157.119.181.234/sbg.la, signs certificates with the key id b7MB9vonnYs=, does not validate on any European union apps.
  • Germany 138.68.76.73/app.pin.health, dev-alex.pin.health, dev-ann.pin.health, stage.pivot.wellness (a testing app that only has the frontend and no backend, which means it does not effect any certificates)
  • Uruguay 179.27.123.237/lacpass-uy.racsel.org (credentials here), signs certificates with the primal id zqxM0w3JrYc=, does not validate on any Eu apps.

Wow. So far it looks like no private key was leaked but someone got admission to i or more unsecured DGCA issuance web panels and can issue certificates signed with the North Macedonia's key. Northward Republic of macedonia's DGCA issuance portal got exposed and taken downwards by the authorities, presumably.

Looks every bit if Poland's DGCA issuance portal has some issues too?

We tin can at present sympathise that it is not possible to emit certificates merely by cloning the data because equally already said they would not exist validated. However the Open Source Code gives u.s. a general view of the process, we can very understand that the weak band is in the initial part of the data entry procedure of DGCA-ISSUER-Web Green Bypass

Taking another close look at the initial 4chan post image, the ii strings at the top are easily identifiable. Both "Record vaccination certification" and "Delight query with ID Card!" strings are from this file in the european union-digital-green-certificates/dgca-issuance-web GitHub repo.

A message (mirror image) on the RaidForums board, could exist faux, could exist non fake. Another mail appeared on RaidForums, posted by someone that goes by the name hronkis (Хронкис). Доктор Хронкис has a Telegram channel where he sells some stuff and what I noticed is that the color of the brush (and style) in this channel postal service is very like to the one in the initial 4chan post. Make what you lot want of it.

            Stop bullshit! exercise you want individual keys? This give-and-take got fucked up towards post 52 when you tasted the jam.  Straight to the bespeak, nosotros have the private keys.  User @lolcol is the just one who has hit the betoken and this give-and-take is filled with idiots.  Signal two, we want to release them. Point three nosotros want a reliable administrator and members to moderate this word.  I think that in this word there are a maximum of five people who understand what we are sitting on and the impact it can accept, we have commercial proposals, but we don't desire money nosotros want to fuck European union.  I provide bear witness of what I am maxim, evidence, non bullshit. Someone with a few stars on the chest of this forum contact me. We will practise a slow release, we volition brand a public proposal towards EU, if they do not footstep back we publish but first we want to evidence you a couple of arguments. We can move to another thread I don't desire idiots to write their opinion, you are entitled to your informed opinion not bullshit. Hacking groups, activists, brilliant minds are welcome. Nosotros offering leaks because this issue is getting also big and we have fabricated enough coin. Simply allow's hash out what comes next ...

"but we don't want money nosotros want to fuck EU."

Speculation

More data in the official repo. All certificates signed with the leaked key(south) will need to be reissued, what a mess.

I guess there are two possibilities:

  • The keys are hold in HSMs and they were non leaked but somebody found a cool way to convince the sistem into signing forged data.
  • Somebody had admission to the keys and just exposed some/all (?) of them.

I still believe it's the first but I wouldn't bet a finger on that it's not the second option.

Based on an image leaked on 4chan (of course), somebody seems to have access to the portal. Because that'south how you become Spongebob Squarepants from United kingdom, Joe Mama from Zimbabwe and of form, our old friend Adolf Hitler from Austria vaccinated. Go on in mind that all the iii certificates seem to be signed with Northward Macedonia's cardinal, KjE8h58xh7A=.

There'south a missed advertising opportunity here: Even Adolf Hitler got the vaccine, what are you lot waiting for?! Or the people that are against the vaccine could say: Adolf Hitler got the vaccine and look where that got him!

Yes, I am joking, don't go offended.

1

            HC1:6BFOXN%TSMAHN-H3YS1IK47ES6IXJR4E47X5*T917VF+UOGIS1RYZV:X9:IMJZTCV4*XUA2PSGH.+H$NI4L6HUC%UG/YL WO*Z7ON13:LHNG7H8H%BFP8FG4T 9OKGUXI$NIUZUK*RIMI4UUIMI.J9WVHWVH+ZEOV1AT1HRI2UHD4TR/S09T./08H0AT1EYHEQMIE9WT0K3M9UVZSVV*001HW%8UE9.955B9-NT0 2$$0X4PCY0+-CVYCRMTB*05*9O%0HJP7NVDEBO584DKH78$ZJ*DJWP42W5P0QMO6C8PL353X7H1RU0P48PCA7T5MCH5:ZJ::AKU2UM97H98$QP3R8BH9LV3*O-+DV8QJHHY4I4GWU-LU7T9.V+ T%UNUWUG+Yard.1KG%VWE94%ALU47$71MFZJU*HFW.6$X50*MSYOJT1MR96/1Z%FV3O-0RW/Q.GMCQS%NE                      
                          {              "1"              :              "CNAM"              ,              "4"              :              1697234400              ,              "half dozen"              :              1635199742              ,              "-260"              :              {              "one"              :              {              "v"              :              [              {              "ci"              :              "URN:UVCI:01:FR:T5DWTJYS4ZR8#4"              ,              "co"              :              "FR"              ,              "dn"              :              2              ,              "dt"              :              "2021-ten-01"              ,              "is"              :              "CNAM"              ,              "ma"              :              "ORG-100030215"              ,              "mp"              :              "EU/one/20/1528"              ,              "sd"              :              2              ,              "tg"              :              "840539006"              ,              "vp"              :              "J07BX03"              }              ],              "dob"              :              "1900-01-01"              ,              "nam"              :              {              "fn"              :              "HITLER"              ,              "gn"              :              "ADOLF"              ,              "fnt"              :              "HITLER"              ,              "gnt"              :              "ADOLF"              },              "ver"              :              "1.3.0"              }              }              }

Ii

            HC1:6BFOX141AZPOPS30OU TSUO9-Q1CO9IIE *V%DTBQ98PTSAJ+3R. G9UFNUDSTESCSA24/E02BNT84/L8PW1F-9ZPU.C4YVA3JK3/NITT9ES2:0P04R-T-P77SB*Z9C5O R2V/FFPKYJIBM98TG+APC:E:*BAETT75XE36N4.PF30PC3LU+KYLNKZ2E7DZXG0CPL+8/N36FHRICSGEKP1X9GSQ79CGCTVYRCLQ7Q.K.J2%8VSR9YA8 xvi.24W79O44AA2X$IRC5EV42C4GVGX621A0YTUNXKPPOSUKHJAB32L5AP67RVOXTNBUTPZQJ9B1H71+4KUVKLLZ+64DMO964C4XIMBZG.OJZHB60QYU3:.J5SI%U0GFRYRRXKDLP9/GRM$58SE+VGI1N-BI%0Q%PNUO9A00854P%Q3X2-S5XLQ2X3JQUOEV:9W8DRGNUHBR:.NZENY*3JC0.O6 65O.R4%5R03K+A0HCD-South-IF-V7D$VD-N$CS9OU7FP4ZF-07DUSRLQ9LT:8DWUE                      
                          {              "one"              :              "PL"              ,              "4"              :              1685101990              ,              "half-dozen"              :              1635098906              ,              "-260"              :              {              "one"              :              {              "v"              :              [              {              "dn"              :              1              ,              "ma"              :              "ORG-100001417"              ,              "vp"              :              "J07BX03"              ,              "dt"              :              "2021-07-11"              ,              "co"              :              "PL"              ,              "ci"              :              "URN:UVCI:01:PL:i/AF2AA5873FAF45DFA826B8A01237BDC4"              ,              "mp"              :              "EU/1/twenty/1525"              ,              "is"              :              "Centrum e-Zdrowia"              ,              "sd"              :              i              ,              "tg"              :              "840539006"              }              ],              "nam"              :              {              "fnt"              :              "HITLER"              ,              "fn"              :              "Hitler"              ,              "gnt"              :              "ADOLF"              ,              "gn"              :              "Adolf"              },              "ver"              :              "1.0.0"              ,              "dob"              :              "1930-01-01"              }              }              }

Three

            HC1:6BFOXN%TSMAHN-H3YS1IK47ES6IXJR4E47X5*T917VF+UOGIS1RYZV:X9RLMSV9 NI4EFSYS:%OD3PYE9*FJ9QMQC8$.AIGCY0K5$0V-AVB85PSHDCR.9K%47IG$+9OPPYE97NVA.D9B92FF9B9LW4G%89-85QNC%05$0VD9%.OMRE/IE%TE6UGYGGCY0$2P0GB*$K8KG+9RR$F+ F%J00N89M40%KLR2A KZ*U0I1-I0*OC6H0/VMNPM/UESJ0A5L5M0G+SI*VSDKPZ0CN62XEAW1 WUQRELS4J1TZWV63HUTN /K9:KFKF+SF3*86AL3*IC%OYZQ5I9 LG/HLIJLKNF8JF172QDRB2C3OUW3IQ6RYMKHDV4*F -IMBCJIO%OA8EV/G3L-NG:2EQB*:C8FFIVT:1QI 8NIMW:BW$By$Chiliad/+8%RFV8C3LVZ:2T+8IQ9LF8I66WWD                      
                          {              "i"              :              "CNAM"              ,              "4"              :              1697234400              ,              "vi"              :              1635333648              ,              "-260"              :              {              "1"              :              {              "v"              :              [              {              "ci"              :              "URN:UVCI:01:FR:W7V2BE46QSBJ#L"              ,              "co"              :              "FR"              ,              "dn"              :              ii              ,              "dt"              :              "2021-10-01"              ,              "is"              :              "CNAM"              ,              "ma"              :              "ORG-100030215"              ,              "mp"              :              "European union/one/xx/1528"              ,              "sd"              :              2              ,              "tg"              :              "840539006"              ,              "vp"              :              "J07BX03"              }              ],              "dob"              :              "2001-12-31"              ,              "nam"              :              {              "fn"              :              "MOUSE"              ,              "gn"              :              "MICKEY"              ,              "fnt"              :              "MOUSE"              ,              "gnt"              :              "MICKEY"              },              "ver"              :              "1.three.0"              }              }              }

Feel complimentary to scan the QR codes above with your official application (for case, the Austrian, Estonian or Finnish apps). Or apply my tool for it.

  • List of all public keys
  • Green Bypass 2.0
  • Generate certificates (but you will still demand the private key)
  • SE Digital Covid Document Trust Betoken
  • RaidForums thread
  • GitHub discussion