diff --git a/api-ref/src/wadls/identity-api/src/v3/samples/RevokedListRequest.txt b/api-ref/src/wadls/identity-api/src/v3/samples/RevokedListRequest.txt
new file mode 100644
index 000000000..735f1a300
--- /dev/null
+++ b/api-ref/src/wadls/identity-api/src/v3/samples/RevokedListRequest.txt
@@ -0,0 +1,2 @@
+Headers:
+X-Auth-Token: d3f677afe73e4027aedbb4f559cfe8e8
\ No newline at end of file
diff --git a/api-ref/src/wadls/identity-api/src/v3/samples/RevokedListResponse.json b/api-ref/src/wadls/identity-api/src/v3/samples/RevokedListResponse.json
new file mode 100644
index 000000000..392e76536
--- /dev/null
+++ b/api-ref/src/wadls/identity-api/src/v3/samples/RevokedListResponse.json
@@ -0,0 +1,3 @@
+{
+  "signed": "-----BEGIN CMS-----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\nWwQ5u58ZD8ohaJPu2Q6l\n-----END CMS-----\n"
+}
diff --git a/api-ref/src/wadls/identity-api/src/v3/wadl/identity-admin-v3.wadl b/api-ref/src/wadls/identity-api/src/v3/wadl/identity-admin-v3.wadl
index 938306ed4..b6484ffa6 100644
--- a/api-ref/src/wadls/identity-api/src/v3/wadl/identity-admin-v3.wadl
+++ b/api-ref/src/wadls/identity-api/src/v3/wadl/identity-admin-v3.wadl
@@ -45,6 +45,9 @@
                 <method href="#checkTokens"/>
                 <method href="#revokeTokens"/>
             </resource>
+            <resource id="os-pki" path="/OS-PKI/revoked">
+                <method href="#listRevokedTokens"/>
+            </resource>
             <resource id="services" path="services"> &authTokenHeader;
                     <method href="#createService"/>
                 <method href="#listServices"/>
@@ -788,6 +791,39 @@
                 </wadl:doc> &authTokenHeader; &subjectTokenHeader;
             </representation>
         </request> &commonFaults; &getFaults; </method>
+    <method name="GET" id="listRevokedTokens">
+        <wadl:doc xmlns="http://docbook.org/ns/docbook"
+            xmlns:wadl="http://wadl.dev.java.net/2009/02"
+            xml:lang="EN" title="List revoked tokens">
+            <para role="shortdesc">Lists revoked PKI tokens.</para>
+            <para>This call shows revoked tokens.</para>
+        </wadl:doc>
+        <request>
+            <representation mediaType="application/json">
+                <wadl:doc xmlns="http://docbook.org/ns/docbook"
+                    xml:lang="EN">
+                    <xsdxt:sample>
+                        <xsdxt:code
+                            href="../samples/RevokedListRequest.txt"
+                        />
+                    </xsdxt:sample>
+                </wadl:doc> &authTokenHeader; &subjectTokenHeader;
+            </representation>
+        </request>
+        <response>
+            <representation mediaType="application/json">
+                <wadl:doc xmlns="http://docbook.org/ns/docbook"
+                    xml:lang="EN">
+                    <xsdxt:sample>
+                        <xsdxt:code
+                            href="../samples/RevokedListResponse.json"
+                        />
+                    </xsdxt:sample>
+                </wadl:doc> &authTokenHeader; &subjectTokenHeader;
+            </representation>
+        </response>
+        &commonFaults; &getFaults;
+    </method>
     <!--Catalog Operations-->
     <method name="GET" id="listServices">
         <wadl:doc xmlns="http://docbook.org/ns/docbook"