This is an attest export bundle. It contains one or more signed purchase receipts, the issuer key manifests needed to verify them, and the full text of every license, mirror policy and end-of-life commitment document any receipt in this bundle refers to. Everything a verifier needs is inside this one file: no network access, no account with the original store, and no cooperation from the issuer is required.
Feed this bundle to any attest-compatible verifier (for example, the
reference implementation: attest import demo.attest then
attest verify <receipt_id>). Verification is fully offline:
each receipt's Ed25519 signature is checked against the issuer's own key
manifest, and both travel inside this bundle. Because this bundle was built
without a live TLS connection to the issuer at verification time, a
compatible verifier reports trust as unauthenticated_tofu
rather than verified — the signatures are exactly as valid;
only their provenance could not be freshly confirmed over the network.
This file, demo.attest, is safe to share — it
was built to contain no secrets. The separate sibling file
demo.private.attest is not safe to share: it holds
your buyer-binding salts (and, if you use per-receipt signing keys, those
private keys too), which are what prove these receipts belong to you.
Handing that file to anyone else hands them that proof for every receipt in
your library at once. Keep demo.private.attest for
yourself. If you need to share or prove a single receipt, use
attest disclose <receipt_id> instead — it discloses only
that one receipt's binding secret, never your whole library.