CERTCRYPT CLI

Official command-line interface for CERTCRYPT: a single binary covering issuance, verification, domain inspection, operator administration, capacity, and status across roles.

CERTCRYPT is infrastructure that makes certification independently verifiable under public rules. Selected artifacts can reach Independent through Proof of Independence, a structural result, so later verification no longer depends on the issuer's live systems.

The CLI is the terminal surface of the protocol. It exposes the same operations available through the language-specific SDKs and verifier toolkits, in a single binary intended for terminal use and scripting across the issuer, verifier, and operator roles. It is not a SDK by language, and it does not replace the language-native SDKs and verifier toolkits.

Note

Pre-launch.

CERTCRYPT is currently in controlled pre-launch.

This repository is being prepared as the public home for the unified CLI. Public CLI code, distribution recipes, conformance material, and reference invocations will be released progressively as the public specifications and the language-specific toolkits stabilize.

The current repository content is intentionally minimal. It establishes the public scope, licensing, security process, and terminology boundary for the CLI before implementation artifacts are released.

Subcommands

The CLI is organized around the protocol roles, with one subcommand per role:

• certcrypt issue — issuer-side operations equivalent to the language-specific SDKs, exposed at the terminal
• certcrypt verify — verifier-side operations equivalent to the language-specific verifier toolkits, exposed at the terminal
• certcrypt domain — inspection of system-domain and rules-domain identity, against the public conformance contract
• certcrypt operator — administrative operations available to recognised operators participating in issuance under the CERTCRYPT domain
• certcrypt capacity — capacity commitment inspection and operations within the public rules
• certcrypt status — local status, configuration, and diagnostic reporting

Each subcommand reads and produces canonical artifacts under public rules. None of them substitutes the role of the language-native SDKs and verifier toolkits in integration code.

CERTCRYPT boundary

• not a claim of factual truth
• not a validator of correctness
• not a custodian of documents
• not blockchain notarization
• not a trust badge

Boundary of the CLI

• not a SDK by language (language-native SDKs live in the certcrypt-sdk-<lang> repositories)
• not a verifier toolkit (language-native verifier toolkits live in the certcrypt-verifier-toolkit-<lang> repositories)
• not a replacement for the issuer's own certificate issuance logic
• not a source of proof validity
• not a document custody library
• not a semantic validator of legal or factual claims

Public Specifications

Public specifications and technical documentation will be published at:

https://docs.certcrypt.com

The public website is available at:

https://certcrypt.com

License

Copyright © 2025-2026 CERTCRYPT.

Licensed under the Apache License, Version 2.0. See LICENSE for the full text.

Contact

Website: https://certcrypt.com
Docs: https://docs.certcrypt.com
Blog: https://blog.certcrypt.com
Open source: opensource@certcrypt.com