Verify a Receipt

Paste any thetacog Air Receipt + the issuing host's ed25519 public key. We verify the signature in your browser. No data leaves your machine.

Anyone who fixed AI reliability fixed competence verification at silicon speed too — by Rice (1953), same problem. They didn't. We did. We patented it.

This page is what makes the receipt sovereign: you, the recipient, verify the signature yourself without trusting our server. The verification runs in your browser via Web Crypto API. Schema · Argument

1 · paste the receipt JSON

receipt body (the JSON file at ~/.thetacog/pmu/receipts/<id>.json)

Drag-drop a .json file here, or paste the body. The signature field is signature: "ed25519:..."; we strip that field before re-canonicalizing the body for verification (the signature was computed over the body WITHOUT the signature + fingerprint fields).

2 · paste the issuing host's ed25519 public key (PEM)

host pubkey · contents of ~/.thetacog/pmu/keys/host.pub.pem

The receipt's signature_pub_fingerprint is the first 16 base64 chars of the SPKI-encoded pubkey — quick visual cross-check against the key you paste here.

Verifier runs entirely client-side via crypto.subtle.verify (Web Crypto API). No network call, no server, no data persisted. Source: github · verify-receipt.html · part of thetacog-mcp@2.7.4 · /air-receipt · /pmu-simulator/demo