DOCUMENTATION

Build with Hashproof

C2PA provenance infrastructure, served as one HTTP API. Sign manifests for content you publish, resolve provenance across re-encodes, and verify cryptographic integrity. Pick where to land below, or open the quickstart and follow along.

Get started

Quickstart

Sign your first manifest and verify it in under 5 minutes. cURL + TypeScript side-by-side.

SDKs

TypeScript and Python clients with auth, signing, and verification helpers.

API reference

Every v1 endpoint, request shape, and response shape. Tryable against your account.

Concepts

C2PA

What the standard is, why we use it, and how the moving pieces fit together.

Manifests

The shape of a manifest, how it relates to your content, and what we store on your behalf.

Webhooks

Event types we emit, the HMAC verification recipe, and the retry policy.

Looking for the OpenAPI spec?

Every endpoint is documented at api.hashproof.ai/docs with an interactive Swagger UI generated from the live route schemas. The curated OpenAPI 3.1 spec, the documented contract, is served at /docs/openapi.json.