Exponent Lifting Sol
Exponent Lifting Sol
Exponent Lifting Sol
an ± 1
Yufei Zhao
Trinity College, Cambridge
April 2011
Practice problems:
1. A primitive root mod n is a number g such that the smallest positive integer k for which
g k ≡ 1 mod n is φ(n).
Solution. (a) The right-hand side polynomial xn − 1 can be factored as nk=1 (x − e n ).
For1 ≤ k ≤ n, each factor x − e n appears exactly once in the left hand side (in Φd (x)
for d = gcd(n,k) ) and all factors in the left hand side are of this form.
(b) Use induction on d. We have Φ1 (x) = x − 1. Suppose Φd (x) is an integer polynomial
for all d < n. Then by (a) Φn (x) is the quotient of two monic integer polynomials, and
hence it must also be an integer polynomial.
(c) Suppose p - n and n - p − 1. We have p | Φn (m) | mn − 1 by (a). So p - m, and
hence p | mp−1 − 1 by Fermat’s little theorem. Thus p | mgcd(p−1,n) − 1. Since n - p − 1,
Trinity Training 2011 an ± 1 Yufei Zhao
n k gcd(p−1,n) − 1.
gcd(p − 1, n) < n. Since p - n, we know p - gcd(p−1,n) . Suppose p k m By
the exponent lifting trick, we have pk
k mn − 1. However, from (a) we know that the
xn −1
polynomial Φn (x) is a factor of xgcd(p−1,n) −1 . Setting x = m gives us a contradiction, since
mn −1
on one hand we have p | Φn (m) but on the other hand p does not divide mgcd(p−1,n) −1
it is the quotient of two numbers both exactly divisible by p . k
(d) It suffices to show that for every positive integer n ≥ 2, there is at least one prime p
with p ≡ 1 (mod n), since then we can find infinitely many such p by finding primes pk
such that pk ≡ 1 (mod kn) for each k ≥ 1.
For n ≥ 2, |Φn (n)| > 1. Let p be a prime divisor of Φn (n). Since Φn (n) | nn − 1 by (a),
p - n, so n | p − 1 by part (b). This gives us the desired prime.
3. (IMO 2003) Let p be a prime number. Prove that there exists a prime number q such
that for every integer n, np − p is not divisible by q.
−1 p
Solution. Let q be a prime divisor of Φp (p) = pp−1 = pp−1 + pp−2 + · · · + p + 1 with
p2 - q − 1 (this must exist since Φp (p) 6≡ 1 (mod p2 )). By problem 2, p | q − 1. If np ≡ p
q−1 q−1
gcd( q−1 ,p)
(mod q), then p p ≡ nq−1 ≡ 1 (mod q). We have q | gcd(p p −1, pp −1) = p p −1,
which equals to p − 1 since p - q − 1. However, we cannot simultaneously have q | p − 1
and p | q − 1. Thus np − p is not divisible by q.
4. (a) Prove that Φm (x) and Φn (x) are always relatively prime as polynomials for m 6= n.
(b) Show that if for some integer x, Φm (x) and Φn (x) are not relative prime, then m/n
is an integer power of a prime.
Solution. (a) The zeros of Φn (x) and Φm (x) are distinct, since the zeros of Φn (x) are
precisely the primitive n-th roots of unity. Thus the polynomials are relatively prime.
(b) Suppose some prime p divides both Φm (x) and Φn (x). By replacing x by x + p if
necessary, we may assume that x > 1. Let us deal with the p = 2 case separately. We
claim that if Φm (x) is even then m must be a power of 2. Indeed, otherwise let q be an
odd prime divisor of m, and let m = qs, then by the previous problem, Φm (x) divides
xm −1 (q−1)s + x(q−2)s + · · · + xs + 1, which is always odd. The p = 2 case follows.
xs −1 = x
Now assume that p > 2. By the previous problem, p divides xm − 1 and xn − 1, and hence
m n
p | xgcd(m,n) − 1. Let pk k xgcd(m,n) − 1. One of gcd(m,n) and gcd(m,n) is not divisible by
p, and assume that it is the latter. Then by the exponent lifting trick, pk k xn − 1. If
xn −1
gcd(m, n) < n, then Φn (x) divides xgcd(m,n) −1
, which is not divisible by p by the above
analysis. This contradicts p | Φn (x). Hence gcd(m, n) = n, i.e., n | m.
We claim that m m
n is a power of p. If not, then pick some prime q dividing n . We have
p | Φn (x) | xn − 1 | xm/q − 1. By the exponent lifting trick, the same power of p divides
both xm − 1 and xm/q − 1. But Φm (x) divides xxm/q−1−1
, which contradicts p | Φm (x). Thus
n is a power of p.
Solution. (a) Observe that if a and b are coprime odd numbers, then gcd(2a + 1, 2b + 1) =
3, since their gcd must divide gcd(22a − 1, 22b − 1) = 2gcd(2a,2b) − 1 = 22 − 1 = 3. Since
2ab + 1 is divisible by both 2a + 1 and 2b + 1, it must also be divisible by 31 (2a + 1)(2b + 1).
Trinity Training 2011 an ± 1 Yufei Zhao
Consider the set of divisors d of p1 · · · pk with an odd number of prime factors. There are
2k−1 such divisors d, and they provide mutually coprime Φd (2) by Problem 4. Take one
prime divisor from each such Φd (2) and we get what we want.
2n + 1
6. (IMO 1990) Determine all positive integers n such that is an integer.
Solution. We claim that the only solutions are n = 1, 3. Suppose n ∈ / {1, 3}. Let p be
the smallest prime divisor of n. Then p | 2n + 1, so p | 22n − 1. By Fermat’s little theorem,
we also have p | 2p−1 − 1. Thus p | 2gcd(p−1,2n) − 1. Since p is the smallest prime divisor
of n, we must have gcd(p − 1, 2n) = 2. So p | 22 − 1 and hence p = 3.
Suppose 3k k n. We have 3 k 22 − 1. So by the exponent lifting trick, 3k+1 k 22n − 1. If
n2 | 2n + 1, then 32k | 22n − 1. Thus 2k ≤ k + 1, hence k = 1. Thus 3 k n.
Let n = 3m. Suppose m 6= 1. Let q denote the smallest prime divisor of m. By the
same argument as above, we have q | 2gcd(q−1,6m) − 1, and gcd(q − 1, 6m) ∈ {2, 6}, so q
divides either 22 − 1 = 3 or 26 − 1 = 63 = 7 · 32 . Since 3 k n, q 6= 3, so q = 7. However,
2n + 1 = (23 )m + 1 ≡ 2 (mod 7), so 7 cannot divide 2n + 1, contradiction. This shows
that 1 and 3 are the only solutions.
7. (IMO 2000) Does there exist a positive integer N which is divisible by exactly 2000
different prime numbers and such that 2N + 1 is divisible by N ?
Solution. Yes. We will show by induction that for any m ≥ 1, there exists a positive
integer N divisibly by exactly m different prime numbers such that N | 2N + 1.
When m = 1, choose N = 3.
We will use the following variant of the exponent lifiting trick: if p is an odd prime, a ≥ 2,
k, m ≥ 1, ` ≥ 0, n odd, pk k a + 1, and p` k n, then pk+` k an + 1. This in fact follows
from our usual exponent lifting trick, as neither a − 1 nor an − 1 are divisible by p (since
a ≡ −1 (mod p) and n is odd), so the claim follows as pk k a2 − 1 implies pk+` k a2n − 1.
Now suppose N = pa11 · · · pamm satisfies N | 2N + 1, where p1 , . . . , pm are distinct prime
and ai ≥ 1. Suppose pbi i k 2N + 1 for each i. Write this as pb11 · · · pbmm k 2N + 1. Then
by above variant of the exponent lifting trick, we have pb11 +` pb22 · · · pbmm k 2N p1 + 1. For
` `
` sufficiently large, we also have pb11 +` pb22 · · · pbmm < 2N p1 + 1, so that 2N p1 + 1 has some
prime divisor pk+1 distinct from p1 , . . . pk . Then N p`1 pk+1 | 2N p1 pk+1 + 1, and hence we
can choose N 0 = N p`1 pk+1 to complete the induction.
8. Let N be a positive integer ending in digits 25, and m a positive integer. Prove that
for some positive integer n, the rightmost m digits of 5n and N agree in parity (i.e., for
Trinity Training 2011 an ± 1 Yufei Zhao
1 ≤ k ≤ m, the k-th digit from the right in n is odd if and only if the k-th digit from the
right in N is odd).
Solution. We will prove by induction on m that there exists infinitely many n that works.
This is trivial when m = 1, 2.
For the inductive step, it suffices to prove the following claim: if n ≥ m ≥ 2, then the
rightmost m digits of 5n and 5n+2 agree in parity, but the (m + 1)-th digit from the
right differ in parity.
By the exponent lifting trick, we have 2m k 52 − 1 as 22 k 5 − 1. It follows that
2m−2 +n n m m
5 − 5 is divisible by 10 but not 2 · 10 . The claim follows.
Suppose that a ∈ Z satisfies p | f (a) and p - f 0 (a). Prove that for any integer k, there
exists an integer b satisfying pk | f (b) and p | b − a.
where the modulo equivalence comes from binomial expansion. (This is related to the
taylor expansion in calculus: f (x + ) ≈ f (x) + f 0 (x).) From the induction hypothesis,
we know pk | f (bk ). Also bk ≡ a (mod p), so p - f 0 (bk ), and hence f 0 (bk ) has an inverse
mod p, say t ∈ Z, satisfying f 0 (bk )t ≡ 1 (mod p). Then setting r = − f (bpkk )t , we have
f (bk+1 ) ≡ f (bk ) − f (bk )rf 0 (bk ) = f (bk )(1 − rf 0 (bk )) ≡ 0 (mod pk+1 ).