Sample only. This page shows what an AUBOSmail proof page looks like for a real send. No live verification calls are made here. To verify a real send, replace /proof/sample with the send_id of any AUBOSmail message you received — anyone can verify, no AUBOSmail account required.

Cryptographic verification

This page lets anyone verify the contents and timing of an email AUBOSmail sent — without trusting AUBOSmail. Five layers, each verifiable independently in your browser.

Layer 1 · Send identifiers

send_idsnd_a4f9c2d8e6b3147f9251c7e0a8d4b2f5

content hash (SHA-256 of canonical JSON, RFC 8785 / JCS)a4f9c2d8e6b3147f9251c7e0a8d4b2f5e3c1d8a7b6e9f2c4d5a3b7e1f8c6d2a9

sent at (UTC)2026-04-30T14:23:18.421Z

recipient hash (HMAC, privacy-preserving)sha256-hmac:e2c8f3a17b9d4602...redacted

Postal Message-Id8f3c91e4-4b2a-4d18-9c7e-2a1f6b8d3c50@mta-1.aubosmail.com

Layer 2 · WORM artifacts (Cloudflare R2 Object Lock, 365 days)

Each artifact is stored on R2 with Object Lock in COMPLIANCE mode. AUBOSmail itself cannot edit or delete these objects until the retention period expires. Sizes shown for context — the actual bytes are content-addressed by SHA-256.

canonical JSON (JCS)6,184 bytes

RFC 5322 message (DKIM-signed by Postal)d=aubosmail.com; s=mta1

rendered HTML (web reader)28,932 bytes

rendered plaintext (fallback)computed from canonical JSON

Layer 3 · Daily Merkle root

Every send is a leaf in the daily Merkle tree. The root is signed Ed25519 by the AUBOSmail proof-roots key, published at /proof/roots/2026-04-30, and mirrored to GitHub.

merkle rootmr_2026_04_30:f7d8b3c1e9a4275061d8c4b3a7e9f2c0

leaf index1247 of 4,192

audit path length⌈log₂(4,192)⌉ = 13 hashes

Layer 4 · DKIM signature

The RFC 5322 message in Layer 2 is signed by Postal with the per-domain DKIM private key. Anyone can fetch the public key from DNS and verify the body hash matches the canonical content.

DNS querymta1._domainkey.aubosmail.com TXT

key lengthRSA 2048-bit

canonicalizationrelaxed/relaxed (RFC 6376 §3.4.2)

Layer 5 · Bitcoin anchor (OpenTimestamps)

The daily Merkle root is committed to Bitcoin via OpenTimestamps the morning after. Once anchored, the root cannot be backdated, even by AUBOSmail. Verifiable with any OpenTimestamps client and any Bitcoin block explorer.

anchored at2026-05-01T03:14:07Z

Bitcoin block height884,210

Bitcoin block hash00000000000000000004f8c1e2a7b3d9c5e0a8f6b2d4c1e9a7f3b8c5d2e1a4f8

verificationots verify -b https://blockstream.info/api

✓ All five layers verifiable independently

You don't need an AUBOSmail account, an API key, or any AUBOSmail software to verify this send. The canonical JSON is on R2. The DKIM key is in DNS. The Merkle root is on GitHub. The Bitcoin anchor is in the public blockchain. AUBOSmail's only job is to publish the proof — the math is everyone else's.

Want to try this with a real send? Claim a free address → or read the security model.