{
  "schema": "raven-key-policy/1",
  "service": "Raven",
  "domain": "raven-official-attestation",
  "currentKeyId": "rvk_c2997e90215279c2",
  "publicKeyEndpoint": "https://raven-hosted-verifier.onrender.com/pubkey",
  "currentSignatureAlgorithm": "ed25519",
  "attestationVersion": "v2",
  "receiptVerificationRequiredFields": [
    "keyId",
    "signatureAlg",
    "signature",
    "replayHash",
    "officialAttestationHash",
    "engineVersion",
    "issuedAt",
    "rpc.observedSlot",
    "coverageGaps",
    "verdict",
    "findingCodes"
  ],
  "keyStates": {
    "active": "signs new receipts; served by /pubkey",
    "retired": "no longer signs; remains published so historical receipts verify",
    "revoked": "compromise suspected; blocks future trust; historical receipts require case-by-case review",
    "retiring": "announced for retirement; still signs during transition window; agents should prepare to accept its successor"
  },
  "rotationPolicy": {
    "oldReceipts": "remain tied to the keyId that signed them",
    "agentRule": "do not assume the newest key verifies old receipts; match keyId",
    "revokedKeys": "block future trust; historical receipts signed by them require review",
    "automation": "no automated rotation; rotation is a human-approved operator action"
  },
  "futureAlgorithmAgility": {
    "plan": "future receipt versions and algorithms may be added under new keyIds; migration is additive and never rewrites historical receipts",
    "postQuantum": "design principle only — no post-quantum security guarantee is currently claimed"
  },
  "disclaimer": "Raven signs on-chain evidence. It does not predict price and is not financial advice.",
  "quantumSafeClaim": false,
  "postQuantumClaim": false,
  "rotationTriggers": [
    "scheduled rotation",
    "suspected exposure (-> revoked, not retired)",
    "algorithm migration (additive, new keyId + receipt version)"
  ],
  "futureMigrationPrinciples": [
    "additive only — new keyId + new receipt/attestation version",
    "versioned and test-covered before any switch",
    "historical receipt verification never silently changes",
    "dual-signature/hybrid envelopes are a documented possibility, NOT implemented"
  ],
  "trustMargin": "Raven documents what signature scheme protects the receipt today (Ed25519 under the published key). It does not promise indefinite cryptographic certainty — agility, not slogans.",
  "prohibitedClaims": [
    "quantum-safe",
    "post-quantum secure",
    "future-proof",
    "unbreakable",
    "safe token",
    "rug-proof",
    "guaranteed"
  ]
}