Does editing the payload regenerate the signature?

If you provide the secret, editing the payload regenerates a valid signature automatically.

Can I test RS256 tokens with a public key?

Yes. Paste the PEM public key to verify an RS256 signature without the private key.

It means the header and payload have not been tampered with since signing with the provided secret.

Yes. A live countdown shows how many seconds until the exp claim is reached.

Decode, verify, and edit all three JWT sections with live validation feedback.

JWT Token

Output

Decode, verify, and edit all three JWT sections with live validation feedback.

Last updated: 2026-06-10 · Reviewed by Nham Vu