npm package discovery and stats viewer.

Discover Tips

  • General search

    [free text search, go nuts!]

  • Package details

    pkg:[package-name]

  • User packages

    @[username]

Sponsor

Optimize Toolset

I’ve always been into building performant and accessible sites, but lately I’ve been taking it extremely seriously. So much so that I’ve been building a tool to help me optimize and monitor the sites that I build to make sure that I’m making an attempt to offer the best experience to those who visit them. If you’re into performant, accessible and SEO friendly sites, you might like it too! You can check it out at Optimize Toolset.

About

Hi, 👋, I’m Ryan Hefner  and I built this site for me, and you! The goal of this site was to provide an easy way for me to check the stats on my npm packages, both for prioritizing issues and updates, and to give me a little kick in the pants to keep up on stuff.

As I was building it, I realized that I was actually using the tool to build the tool, and figured I might as well put this out there and hopefully others will find it to be a fast and useful way to search and browse npm packages as I have.

If you’re interested in other things I’m working on, follow me on Twitter or check out the open source projects I’ve been publishing on GitHub.

I am also working on a Twitter bot for this site to tweet the most popular, newest, random packages from npm. Please follow that account now and it will start sending out packages soon–ish.

Open Software & Tools

This site wouldn’t be possible without the immense generosity and tireless efforts from the people who make contributions to the world and share their work via open source initiatives. Thank you 🙏

© 2026 – Pkg Stats / Ryan Hefner

@eecc/rsa-multikey

v1.0.2

Published

Data integrity compatible multikey for RSA-PSS (PS256)

Vulnerabilities

Powered byPowered by Snyk
  • 0High
  • 0Medium
  • 0Low

Links

Maintainers

eecceecc

Keywords

rsamultikeyps256rsa-psscryptographydigital-bazaar

Readme

rsa-multikey

Data integrity multikey for RSA-PSS (PS256) signatures compatible with https://github.com/digitalbazaar/data-integrity

This package provides RSA key pair generation, import/export, and signing/verification functionality compatible with the Multikey format used by Digital Bazaar's cryptographic suites.

Features

  • Generate RSA key pairs for PS256 (RSA-PSS with SHA-256) signatures
  • Import/export keys in Multikey format (multibase encoding)
  • Import/export keys in JWK format
  • Sign and verify data using RSA-PSS
  • Support for multiple RSA modulus lengths (2048, 3072, 4096 bits)
  • Compatible with Digital Bazaar's multikey format

Installation

npm install rsa-multikey

Usage

Generate a new RSA key pair

import * as RsaMultikey from 'rsa-multikey';

// Generate a 4096-bit RSA key pair
const keyPair = await RsaMultikey.generate({
  controller: 'https://example.com/issuer',
  modulusLength: 4096
});

console.log(keyPair.id);
console.log(keyPair.publicKeyMultibase);

Import from Multikey format

const keyPair = await RsaMultikey.from({
  '@context': 'https://w3id.org/security/multikey/v1',
  type: 'Multikey',
  id: 'https://example.com/issuer#z...',
  controller: 'https://example.com/issuer',
  publicKeyMultibase: 'z...',
  secretKeyMultibase: 'z...' // optional
});

Import from JWK format

const keyPair = await RsaMultikey.fromJwk({
  jwk: {
    kty: 'RSA',
    n: '...',
    e: 'AQAB',
    d: '...', // optional
    p: '...', // optional
    q: '...', // optional
    dp: '...', // optional
    dq: '...', // optional
    qi: '...' // optional
  },
  id: 'https://example.com/issuer#key-1',
  controller: 'https://example.com/issuer',
  secretKey: true // include private key if available
});

Sign data

const signer = keyPair.signer();
const signature = await signer.sign({
  data: new TextEncoder().encode('Hello, World!')
});

Verify signature

const verifier = keyPair.verifier();
const isValid = await verifier.verify({
  data: new TextEncoder().encode('Hello, World!'),
  signature: signatureBytes
});

Export to JWK

const publicJwk = await RsaMultikey.toJwk({
  keyPair,
  secretKey: false
});

const privateJwk = await RsaMultikey.toJwk({
  keyPair,
  secretKey: true
});

API

generate(options)

Generates a new RSA key pair.

  • options.id (string, optional): Key identifier
  • options.controller (string, optional): Controller DID
  • options.modulusLength (number, optional): RSA modulus length (2048, 3072, or 4096). Default: 4096

Returns: Promise<KeyPair>

from(key, options)

Imports a key pair from Multikey format.

  • key (object): Multikey object
  • options (object, optional): Additional options

Returns: Promise<KeyPair>

fromJwk(options)

Imports a key pair from JWK format.

  • options.jwk (object): JSON Web Key
  • options.secretKey (boolean, optional): Whether to include private key
  • options.id (string, optional): Key identifier
  • options.controller (string, optional): Controller DID

Returns: Promise<KeyPair>

toJwk(options)

Exports a key pair to JWK format.

  • options.keyPair (object): Key pair to export
  • options.secretKey (boolean, optional): Whether to export private key. Default: false

Returns: Promise<JWK>

fromRaw(options)

Imports a key pair from raw bytes.

  • options.modulusLength (number): RSA modulus length
  • options.publicKey (Uint8Array): Public key bytes (SPKI format)
  • options.secretKey (Uint8Array, optional): Private key bytes (PKCS#8 format)

Returns: Promise<KeyPair>

toJsonWebKey2020(options)

Converts a multikey key pair to JsonWebKey2020 format for use with ps256-signature-2020.

  • options.keyPair (object): Key pair to convert
  • options.secretKey (boolean, optional): Whether to include private key. Default: false

Returns: Promise<JsonWebKey2020>

Compatibility with ps256-signature-2020

This package is designed to work seamlessly with @eecc/ps256-signature-2020:

  • Signer interface: Compatible with sign({ data: Uint8Array }): Promise<Uint8Array>
  • Verifier interface: Compatible with verify({ data: Uint8Array, signature: Uint8Array }): Promise<boolean>
  • Algorithm parameters: Uses saltLength: 32 (SHA-256 hash length) matching ps256-signature-2020
  • Key format: Supports JsonWebKey2020 format via toJsonWebKey2020() helper

Example integration:

import * as RsaMultikey from 'rsa-multikey';
import { PS256Signature2020 } from '@eecc/ps256-signature-2020';

// Generate RSA key pair
const keyPair = await RsaMultikey.generate({
  controller: 'did:web:example.com',
  modulusLength: 4096
});

// Convert to JsonWebKey2020 format
const jsonWebKey2020 = await RsaMultikey.toJsonWebKey2020({
  keyPair,
  secretKey: true
});

// Use with ps256-signature-2020
const suite = new PS256Signature2020({ key: jsonWebKey2020 });

License

BSD 3-Clause License