Questions worth a real answer.

Three v3 onion mirrors listed on the Mirrors page. Mirror 01 is the primary, Mirrors 02 and 03 are equivalent failover. All three carry the same PGP signature with fingerprint ending in 0A9D. The roster is republished daily.

Hit Copy on the mirror card. Open Tor Browser pulled directly from torproject.org and not from anywhere else. Paste into the URL bar. Slide the security level to Safest. Press Enter. Verify the PGP timestamp on the login page before submitting credentials.

Try Mirror 02, then Mirror 03. Tor congestion is routine, single-mirror outages happen weekly. If all three fail for more than 30 minutes, reload /mirrors on this gateway. Never search for replacement URLs on the clearnet, that is exactly when phishing networks pump fake links into search results.

No. Nexus Market does not run a clearnet frontend. Any clearnet domain that claims to be Nexus is a phishing operator scraping mirror lists from gateways like this one. Use the gateway, verify the PGP signature, then enter credentials only on the v3 onion.

RSA 4096, key ID 0x7F2A0A9D, full fingerprint 7F2A 9C41 66B8 E1D5 4832 19A4 88F3 BD2C 1E5A 0F77 ... 0A9D. The public key is published on the About page and on each mirror. Cross-signed by independent witnesses, you do not need to trust this gateway alone.

Import the master key once with gpg --import nexus-master.asc. On the mirror login page, copy the signed timestamp block between BEGIN and END markers, paste into a local file, and run gpg --verify timestamp.asc. A clean GOOD signature is the only clearance to log in.

No, that is the trust web warning, not a signature failure. Read the message carefully. If it says Good signature from followed by WARNING: This key is not certified with a trusted signature, the signature itself is cryptographically valid. After verifying the fingerprint matches, you can sign the key locally to silence the warning on future runs.

Monero ring signatures, stealth addresses, and ringCT hide the sender, recipient, and amount. The Bitcoin ledger is fully public and indexed by Chainalysis, TRM, Elliptic, and a dozen other vendors that sell wallet correlation to law enforcement and exchanges. For a market whose entire purpose is privacy, only one of these works.

For legacy balances only. Accounts created before the 2024 currency rotation can still hold and withdraw BTC. New deposits are routed straight to XMR on signup. The market does not encourage ongoing BTC use.

For each order, a 2-of-3 Monero multisig contract is created. Buyer, vendor, and platform each hold one key. To release funds, two of the three must sign. The buyer signs on receipt of goods. The vendor signs on dispatch confirmation. The platform signs only in dispute resolution. No single party drains the contract alone, which is what kills exit scam risk.

Feather Wallet is the recommended desktop client. The Monero CLI works for hardened setups. Avoid any web wallet that asks for a seed phrase in a form field. Hardware wallet support exists, Trezor and Ledger both work for XMR with the official CLI.

Apply through the in-market vendor portal after a buyer account in good standing exists. The application asks for a PGP key, a vendor handle, a category list, a description, and an upfront bond denominated in XMR. The bond is held in multisig and refunded after the probation window or forfeit on the first confirmed scam complaint.

The bond is a commitment device. It signals that the vendor expects to operate long enough to recover the deposit, which selects against single-shot scammers. The amount tracks category risk, higher for goods that draw more disputes. Refunds settle to the vendor wallet at probation end with no platform skim.

Vendors can attach signed feedback exports from prior markets to the application. The dispute panel weighs them as soft evidence, not as automatic credit. The probation window is shortened for vendors with verifiable track records on Empire, Dream, AlphaBay, or other markets that issued signed feedback. The window is never waived entirely.

Inside the order ticket, after the listed delivery window has lapsed and after at least one good faith message to the vendor has gone unanswered for 48 hours. Premature disputes are dismissed without prejudice but waste vendor and panel time. The order ticket is the only legitimate dispute channel, never DM the panel.

Photos timestamped against shipping deadlines, tracking screenshots, signed message logs from the in-market system, and PGP-signed buyer statements. Anonymous external claims and clearnet screenshots are ignored. The dispute panel only acts on evidence that exists inside the order context.

No. Rulings are written, signed, and attached to the vendor profile permanently. The only recourse for a wrong ruling is appeal to a fresh panel within 14 days, and even then the original ruling stays on the profile, only the appeal outcome is added. There is no private deal making with the platform.

Tor Browser, GnuPG, an offline password manager, and a Monero wallet that does not run in a browser tab. That stack covers 90 percent of typical buyer activity. Vendors should add Tails or Whonix for any session that touches shipping addresses or vendor key material.

No. Tor first, always. A VPN before Tor adds a logging hop you have to trust, and most consumer VPNs cooperate with subpoena requests. A VPN after Tor breaks the anonymity model. The default is Tor alone with the Safest security level.

No. Generate a fresh key for Nexus and never tie it to a clearnet identity. Key reuse across markets is the single most common deanonymisation vector, more reliable than payment correlation, more reliable than IP leaks, more reliable than browser fingerprinting. One key per identity, one identity per market.