What is this?
This site lets you independently verify the cryptographic signature and content hash of any chain entry produced by an Aleutian-protected data control system. You do not need an Aleutian account.
How to use
-
If you received a link like
https://verify.aleutian.ai/v/<entry-id>, open it to see the verification result. - If you received a Subject Access Request fulfillment ZIP, visit /verify-zip to verify its integrity in your browser.
What does "verified" mean?
A passing result means: (1) the entry's canonical bytes hash to the claimed content hash, and (2) the ML-DSA-65 (FIPS 204 post-quantum) signature over those bytes verifies against the public key registered in our trust manifest. Anyone running this same verification logic — including the open-source SDK at aleutian-verification-go — reaches the same conclusion.