Public signing keys

Verify any receipt or CREB bundle independent of our infrastructure.

Ed25519, Dilithium-III hybrid. Rotation log below. Reference verifier published.

Current production keys

Ed25519 public key:
[base64-encoded key - publish at GA]

Dilithium-III public key:
[base64-encoded key - publish at GA]

ML-DSA-65 public key:
[base64-encoded key - publish at GA]

Key fingerprint (SHA-256):
[hash - publish at GA]

Key rotation schedule:
[next rotation timestamp - publish at GA]

Keys are committed to this page at general availability and rotated on a published schedule. Historical keys remain published for verifying receipts issued under prior rotations.

Verifying a receipt

Retrieve the receipt JSON from the API or your customer portal.
Compute the canonical hash of the receipt body.
Verify the Ed25519 signature against the production Ed25519 public key above.
Verify the Dilithium-III signature for post-quantum integrity.
Confirm the CourtChain anchor exists at the recorded block height.

Reference verifier:github.com/attestyx/receipt-verifier.

Historical keys

Archive of rotated public keys with rotation date, key fingerprint, and validity window. Populated as keys rotate.

PGP for security disclosures

PGP public key for[email protected]:

-----BEGIN PGP PUBLIC KEY BLOCK-----
[ASCII-armored PGP public key - publish at GA]
-----END PGP PUBLIC KEY BLOCK-----

Fingerprint: [PGP key fingerprint - publish at GA]

Reference verifiers Sample receipt Legal index