Skip to main content
Docs

Deployer guide

Publish canons and issue seals.

Deployer APIs let approved issuers define evidence profiles and attach signed evaluations to agent passports.

01

Publish canon

Define the evidence profile and requirements.

02

Issue seal

Attach a signed evaluation to a passport.

03

Verify seal

Check the current status and receipt metadata.

04

Receive webhook

Sync issued, revoked, and expired seal events.

Canon

Publish the evidence profile.

A canon states what evidence must exist before a deployer can issue a seal.

publish-canon.sh
curl -X POST https://rankigi.com/api/v1/canons \
  -H "Authorization: Bearer rnk_dep_live_..." \
  -H "Content-Type: application/json" \
  -d '{
    "id": "evide.financial-witness",
    "version": "1.0.0",
    "title": "Financial Transaction Witness",
    "scope": ["financial_transaction", "settlement"],
    "requirements": ["signed_invocation", "rfc3161_timestamp"]
  }'

Seal

Issue a signed evaluation.

The seal references a snapshot hash and issuer signature. It does not replace the underlying proof chain.

issue-seal.sh
curl -X POST https://rankigi.com/api/v1/seals/<sealTypeId>/issue \
  -H "Authorization: Bearer rnk_dep_live_..." \
  -H "Content-Type: application/json" \
  -d '{
    "agent_id": "agt_418e2d1c",
    "passport_id": "RNK-AGENT-9K2M4PQR",
    "snapshot_hash": "sha256:3e2b0ab0...",
    "evaluation_window": {
      "from": "2026-06-01T00:00:00Z",
      "to": "2026-06-30T23:59:59Z"
    },
    "issuer_signature": "ed25519:..."
  }'

Verify

Check the seal before relying on it.

Verification returns the seal status and passport binding. A revoked or expired seal should not be treated as current evidence.

verify-seal.sh
curl -X POST https://rankigi.com/api/v1/test \
  -H "Authorization: Bearer rnk_dep_live_..." \
  -H "Content-Type: application/json" \
  -d '{
    "passport_id": "RNK-AGENT-9K2M4PQR",
    "seal_id": "seal_01hx..."
  }'