attest receipt bundle: demo

What this is

This is an attest export bundle. It contains one or more signed purchase receipts, the issuer key manifests needed to verify them, and the full text of every license, mirror policy and end-of-life commitment document any receipt in this bundle refers to. Everything a verifier needs is inside this one file: no network access, no account with the original store, and no cooperation from the issuer is required.

How to verify, even if the store no longer exists

Feed this bundle to any attest-compatible verifier (for example, the reference implementation: attest import demo.attest then attest verify <receipt_id>). Verification is fully offline: each receipt's Ed25519 signature is checked against the issuer's own key manifest, and both travel inside this bundle. Because this bundle was built without a live TLS connection to the issuer at verification time, a compatible verifier reports trust as unauthenticated_tofu rather than verified — the signatures are exactly as valid; only their provenance could not be freshly confirmed over the network.

Never share demo.private.attest

This file, demo.attest, is safe to share — it was built to contain no secrets. The separate sibling file demo.private.attest is not safe to share: it holds your buyer-binding salts (and, if you use per-receipt signing keys, those private keys too), which are what prove these receipts belong to you. Handing that file to anyone else hands them that proof for every receipt in your library at once. Keep demo.private.attest for yourself. If you need to share or prove a single receipt, use attest disclose <receipt_id> instead — it discloses only that one receipt's binding secret, never your whole library.