public function verify($signature, $original, $hash = false) { if ($hash) { $original = hash(self::SIGNATURE_HASH_ALGORITHM, $original); } $reconstructed = RSA::decryptWithPublic($signature, $this->getPublicKey()); return $reconstructed === $original; }