?envelope= share link) or a receipt id. This page runs the checks against the
published SZLHOLDINGS cosign public key and shows each result honestly. Nothing is fabricated.This is the "trust-us → verify-the-receipt" surface. Paste an SZL DSSE receipt below. The verifier: (1) checks the ECDSA-P256 signature against our public cosign key, (2) re-hashes the payload and compares it to the digest the payload declares about itself (not the chain id), and (3) walks the hash-chain to genesis if the receipt is in this process's ledger. Each check is labelled VERIFIED / MISMATCH / UNSIGNED-LOCAL / UNAVAILABLE.
VERIFIED the check ran and passed. MISMATCH the check ran and FAILED (bad signature, tampered payload, or broken chain). UNSIGNED-LOCAL the envelope carries no signature — nothing to verify (never faked). UNAVAILABLE the check could not be RUN here (no runtime key, or the receipt isn't in this process's in-memory ledger).
cosign verify-blob. In-memory Khipu chains reset on a Space restart,
so a hash-chain check can honestly read UNAVAILABLE for an older receipt id.