Every example shows that we need to download jwks.json file from https://your_domain.auth0.com/.well-known/jwks.json. I would like to ask: how often the content can be changed? What if I download the file once and save in application settings. Of course it won’t be possible if this file gets update periodically. I assume this key is based on global client secret/client id values (tenant settings -> advanced -> Global Client Information), but I did not see any possible way to rotate secrets.
So, is it good idea to download jwks content once and use it every time when I validate JWT and what can be a reason to change the file content?