{
  "alg": "Ed25519",
  "key_id": "solcleus-attest-1",
  "public_key": "dZyDXy2M3ywjuaJD68wZL369xhbquwFjHuDsgkSdV9s=",
  "public_key_encoding": "base64 of the raw 32-byte Ed25519 public key",
  "issuer": "solcleus.com",
  "what_is_signed": "each transparency-log entry, excluding its own `signature` field",
  "canonical": "json.dumps(entry_without_signature, sort_keys=True, separators=(',',':'), ensure_ascii=False)",
  "verify": "Ed25519.verify(public_key, utf8(canonical(entry)), base64decode(entry['signature']['value']))",
  "transparency_log": "/transparency.json",
  "example_python": "from cryptography.hazmat.primitives.asymmetric.ed25519 import Ed25519PublicKey\nimport base64, json, urllib.request\ndoc = json.load(urllib.request.urlopen('https://solcleus.com/.well-known/solcleus-attestation'))\nlog = json.load(urllib.request.urlopen('https://solcleus.com' + doc['transparency_log']))['log']\npk = Ed25519PublicKey.from_public_bytes(base64.b64decode(doc['public_key']))\ne = dict(log[0]); sig = e.pop('signature')['value']\nmsg = json.dumps(e, sort_keys=True, separators=(',',':'), ensure_ascii=False).encode()\npk.verify(base64.b64decode(sig), msg)   # raises if invalid; silent if valid"
}