Hi everyone 
I’ve successfully obtained a CSID from binarySecurityToken using the TSTZATCA-Code-Signing profile and have passed the Java SDK 3.4.1 validation for [EN][KSA][QR][PIH].
However, signature validation consistently fails with the following errors:
CODE: xadesSignedPropertiesDigestValue, MESSAGE: wrong xadesSignedPropertiesDigestValue
CODE: signatureValue, MESSAGE: wrong signature Value
CODE: signingCertificateDigestValue, MESSAGE: wrong signingCertificateDigestValue
I’ve followed both the “E-Invoicing Detailed Technical Guideline” (step 5, page 52) and the “SigningProcessUpdated.pdf”, ensuring:
- The invisible SignedProperties template is populated correctly
- The same values are used in both the actual invoice and the hashable version
- SHA-256 is applied as described, followed by base64 encoding (ZATCA style: hash → hex → base64)
Despite this, I can’t get [SIGNATURE] to pass validation. 
Has anyone encountered this or can offer insight into how they solved it?
Happy to share sanitized XML snippets or hash output if needed.
Thanks in advance for any guidance!