---
title: Fetch Apple’s public key to verify token signatures
framework: signinwithapplerestapi
role: symbol
role_heading: Web Service Endpoint
path: "signinwithapplerestapi/fetch-apple's-public-key-for-verifying-token-signature"
---

# Fetch Apple’s public key to verify token signatures

Fetch Apple’s public key to verify ID token and server notification signatures.

## URL

GET https://appleid.apple.com/auth/keys

## Response Codes

200 OK: The request was successful.

## Mentioned in

Processing changes for Sign in with Apple accounts

## Discussion

Discussion If successful, the HTTP status code is 200 (OK) and the JWKSet.Keys object contains Apple’s public key. For more information, see Verifying a user and Decode and validate the notifications. note: The endpoint can return multiple keys, and the count of keys can vary over time. From this set of keys, select the key with the matching key identifier (kid) to verify the signature of any JSON Web Token (JWT) issued by Apple. For more information, see the JSON Web Signature specification.

## See Also

### Generating and revoking tokens

- [Creating a client secret](accountorganizationaldatasharing/creating-a-client-secret.md)
- [Token validation](signinwithapplerestapi/generate-and-validate-tokens.md)
- [Token revocation](signinwithapplerestapi/revoke-tokens.md)