Every AttestLayer surface, in one map.

attestlayer.com

Apex site: who AttestLayer is, what we publish, and where to go next.

buy.attestlayer.com

Direct-buyer purchase paths: Activation, Monthly Coverage, Founding Customer Proof Pack, Enterprise Deal Rail, Enterprise Buyer Proof Pack.

partners.attestlayer.com

Service-provider partner program and Distribution Pack.

program.attestlayer.com

Standardization Program for institutional and platform partners.

verify.attestlayer.com

Reviewer-facing verification page and offline verifier walkthrough.

registry.attestlayer.com

Public verification metadata and JWKS key discovery.

api.attestlayer.com

Evidence API (FES-1.0-preview), endpoints, OpenAPI, changelog.

console.attestlayer.com

Customer console for live workspaces; account access required.

Apex publishes the boundary

attestlayer.com states what AttestLayer is, what it is not, and where each workflow lives.

Buy and partners route purchase intent

buy is for direct buyers. partners is for service providers. program is for institutional and platform partners.

Verify and registry serve reviewers

verify is for reviewer verification flows. registry exposes JWKS and limited verification metadata.

API and console serve operators

api.attestlayer.com is the public evidence API. console.attestlayer.com is the authenticated workspace surface.

The model uses

• SHA-256 artifact hashing
• manifest-based evidence inventory
• canonical receipt hashing
• Ed25519 receipt signatures
• JWKS public-key discovery
• offline verification
• fail-closed verification behavior

What it proves

• files match the manifest
• manifest matches the receipt
• receipt key ID matches a public key
• receipt signature verifies
• the kit has not been modified since issuance

What it does not prove

• company compliance status
• company security status
• controls are operating effectively
• a buyer, auditor, insurer, bank, regulator, or PSP has accepted the packet
• the evidence content is legally sufficient