Not sure what are you asking about. The xmlsec "signature" check includes not only check for changed xml file but also checks for validity of all certificates, etc. Aleksey