diff --git a/cmd/notation/manifest.go b/cmd/notation/manifest.go
index 35c281ac9..1d8f8acba 100644
--- a/cmd/notation/manifest.go
+++ b/cmd/notation/manifest.go
@@ -64,6 +64,10 @@ func resolveReference(ctx context.Context, inputType inputType, reference string
 	resolvedRef = resolvedRef + "@" + manifestDesc.Digest.String()
 	if _, err := digest.Parse(tagOrDigestRef); err == nil {
 		// tagOrDigestRef is a digest reference
+		if tagOrDigestRef != manifestDesc.Digest.String() {
+			// tagOrDigestRef does not match the resolved digest
+			return ocispec.Descriptor{}, "", fmt.Errorf("user input digest %s does not match the resolved digest %s", tagOrDigestRef, manifestDesc.Digest.String())
+		}
 		return manifestDesc, resolvedRef, nil
 	}
 	// tagOrDigestRef is a tag reference