Question 1

What is the Cperm Cryptographic Portal?

Accepted Answer

It is a public verification portal that lets anyone validate that a Vault listing has a cryptographic proof receipt. Verification is performed using a published public key and a signed receipt generated at publication time.

Question 2

What makes it cryptographic instead of just a normal website?

Accepted Answer

Each proof receipt includes a digital signature created with a server-side private key. Anyone can validate the signature with the published public key (public.pem). The verifier returns VALID or INVALID based on signature verification.

Question 3

What files are included in a proof receipt?

Accepted Answer

A receipt typically includes: a canonical payload file (.json), a SHA-256 hash (.sha256), a signature file (.sig), The published public key (public.pem) is used to verify signatures.

Question 4

How do I verify a Vault listing?

Accepted Answer

Paste a Vault listing URL into the portal and click Verify URL, or verify a specific item id or base receipt string. The verifier returns VALID when the receipt signature matches the published public key.

Question 5

Where is the public key used for verification?

Accepted Answer

The public key is published at https://vault.cperm.com/oc-content/uploads/cperm-proof/public.pem

Question 6

Where is the verifier endpoint?

Accepted Answer

The Vault verifier endpoint is https://vault.cperm.com/oc-content/uploads/cperm-proof/verify.php

Cryptographic Portal

Public key (embedded)

Verify a listing

What you are verifying