Maintaining　the　integrity　of　programs　is　crucial　for　ensuring　the　security　of　the　platform　they　operate　on.　The　integrity　of　the　programs　on　a　trusted　computing　platform　is　measured　and　reported　to　a　challenger　by　utilizing　a　Trusted　Platform　Module　integrated　on　the　platform.　The　challenger　then　judges　whether　the　programs　maintain　their　integrity　by　comparing　the　measurements　with　the　integrity　references.　Therefore,　managing　the　integrity　references　and　ensuring　their　correctness　is　of　utmost　importance.　There　is　currently　no　system　where　a　challenger　can　obtain　all　integrity　references　directly.　A　challenger　typically　has　to　obtain　the　integrity　references　from　each　platform　with　＇good＇　measurements.　This　paper　presents　BIRM,　a　consortium　Blockchain-based　Integrity　References　Management　system.　BIRM　enforces　access　controls　for　publishing　integrity　references.　The　integrity　reference　files　in　BIRM　use　a　unified　syntax　based　on　the　JSON　Web　Signature　specification　and　are　stored　separately　in　a　distributed　storage　network.　Only　identity　and　storage　index　tuples　are　recorded　in　the　blockchain　to　reduce　its　load.　The　blocks　in　BIRM　are　organized　as　a　Merkle　Mountain　Range.　When　an　inquiry　is　made,　BIRM　not　only　returns　the　requested　identity　and　storage　index　tuple　directly　from　the　key-value　database　but　also　generates　proof　data　by　parsing　block　data　to　ensure　the　tuple＇s　correctness.　BIRM　supports　multiple　tuple　inquiries　in　a　single　request,　using　multiple　paths　in　the　Merkle　Mountain　Range　tree.　The　amount　of　proof　data　and　proof　generation　and　checks　are　logarithmic　in　complexity　relative　to　the　total　number　of　blocks.　©　2023　IEEE.