Verify a signed record
Paste a LaunchTrust signed scan record and verify the ECDSA P-256 signature over the exact canonical bytes. This page runs in your browser.
LaunchTrust signatures are expected as raw 64-byte r||s values encoded with base64url. OpenSSL and many Python libraries expect DER, so this tool also shows the DER form for cross-checking.
Waiting for a record
Use the signed record from a LaunchTrust Pro scan. Live-key verification can be tested after the backend is deployed.