> verify_attestation
Independently verify a SafeRouter instance — cryptographically, in your browser. The checks below run on AMD's public root certificate and WebCrypto. You don't have to trust this page: open devtools to read the code, or replay the same checks with your own tooling. Each check states what it proves today; binding the running binary to a specific open-source commit (reproducible build + measured boot) is on the roadmap.
// two independent proofs — don't confuse them:
①above — our published code fingerprint, committed once to the public Sigstore Rekor log. Static & immutable: “this is the exact binary we shipped, and we can't quietly swap it.”
②below — a live check you run now against any SafeRouter endpoint: it pulls that box's SEV-SNP attestation and verifies the signatures, cert chain, nonce & transparency log right in your browser. “this running box is genuinely that code, on real TEE hardware.”