An Ingredient Assertion is a cryptographically signed statement within a C2PA manifest that uniquely identifies and references a discrete piece of source media—such as a raw photograph, a stock video clip, or an audio sample—that was combined to produce a final composite output. It functions as a formal, machine-readable declaration of parentage, recording the precise cryptographic hash of the ingredient file to create a tamper-evident link between the source and the derivative work.
Glossary
Ingredient Assertion

What is Ingredient Assertion?
An Ingredient Assertion is a specific type of C2PA manifest assertion that documents a piece of source media used in the creation of a final composite digital asset, forming a verifiable lineage chain.
By documenting each ingredient's hash, relationship, and associated metadata, this assertion constructs the nodes of a provenance chain. This allows downstream validators to recursively verify the authenticity of every component in a complex edit, ensuring that a composited image can be mathematically traced back to its original, unmodified source files, thereby establishing a high-confidence, verifiable lineage for the final asset.
Key Characteristics of Ingredient Assertions
Ingredient Assertions form the verifiable backbone of composite media lineage, documenting each source asset used in a final creative work to establish an auditable chain of custody.
Hard Binding to Source Assets
An Ingredient Assertion cryptographically references a specific source file through its asset hash, creating a tamper-evident link between the ingredient and the final composite. This binding ensures that any alteration to the original source—even a single pixel or byte—invalidates the provenance chain.
- Uses SHA-256 hashing to generate a unique content fingerprint
- The hash is stored within the manifest's
ingredientfield alongside metadata - Enables validators to mathematically verify the exact source file was used
Documenting the Relationship Graph
Each Ingredient Assertion specifies a relationship type that defines how the source media contributed to the final asset. This transforms a flat list of sources into a machine-readable provenance data model.
componentOf: The ingredient is a direct, composited part of the final workinputTo: The ingredient served as input to a generative or transformative process- Captures the directed acyclic graph (DAG) of media creation
Preserving Recursive Lineage
An ingredient can itself carry a complete C2PA manifest from its own creation. This recursive structure allows a final asset's credential to surface the full, multi-generational edit history of every source file, not just a flat list.
- Enables deep provenance chain traversal
- A stock photo with its own C2PA data retains its creator attribution when composited
- Validators can recursively verify each ingredient's own signature chain
Metadata for Compositing Transparency
Beyond the cryptographic hash, an Ingredient Assertion carries descriptive metadata about the source media, including its title, format, and the specific actions applied during integration. This provides human-readable context for the technical lineage.
- Documents the software agent used for compositing
- Records transformation parameters like scaling or color space conversion
- Supports Action Assertions to describe edits made to the ingredient before finalization
Supporting Soft Binding via Remote References
While hard binding embeds the ingredient's hash directly, soft binding allows an Ingredient Assertion to reference source media stored externally through a content hash URI. This is critical for workflows where embedding large source files is impractical.
- Uses the
hashlinkURI scheme to reference external assets - The validator fetches the remote asset and verifies its hash matches the assertion
- Enables cloud-native provenance for high-resolution video and complex composites
Validator Ingredient Verification
During provenance verification, a validator engine must recursively process every Ingredient Assertion. For each ingredient, the engine checks the claim signature of its own manifest, validates its certificate chain, and confirms the hash of the referenced asset matches the recorded value.
- A single broken ingredient chain can flag the entire composite for review
- Validators check revocation status of all signing certificates in the chain
- The final trust decision depends on the verifier's configured trust list
Frequently Asked Questions
Explore the technical mechanics behind Ingredient Assertions, the C2PA specification's method for documenting source media lineage in composite digital assets.
An Ingredient Assertion is a specific type of C2PA manifest assertion that documents a piece of source media used in the creation of a final composite digital asset, forming a verifiable lineage chain. It works by embedding a cryptographically hashed reference to the ingredient file's own C2PA manifest directly into the composite asset's provenance data. This creates a directed acyclic graph where the final output points backward to its components. For example, a final social media graphic might contain two ingredient assertions: one referencing the original photograph's manifest and another referencing the logo overlay's manifest. Each ingredient assertion includes the ingredient's content hash, its own provenance chain, and metadata describing the relationship, such as "relationship": "componentOf". This allows downstream validators to recursively verify not just the final asset's integrity, but the authenticity of every source element that contributed to it.
Ingredient Assertion vs. Related C2PA Assertion Types
A comparison of the Ingredient Assertion against other core C2PA assertion types that document the composition and provenance of digital assets.
| Feature | Ingredient Assertion | Action Assertion | Identity Assertion |
|---|---|---|---|
Primary purpose | Documents source media used in a composite asset | Describes an operation performed on the content | Links content to a verified real-world identity |
Documents parent-child relationships | |||
Records software agent used | |||
Requires X.509 certificate backing | |||
Captures transformation parameters | |||
Forms verifiable lineage chain | |||
References external asset by hash | |||
Supports W3C PROV data model |
Enabling Efficiency, Speed & Accuracy
Intelligent Analysis, Decision & Execution
We build AI systems for teams that need search across company data, workflow automation across tools, or AI features inside products and internal software.
Talk to Us
Search across company data
Give teams answers from docs, tickets, runbooks, and product data with sources and permissions.
Useful when people spend too long searching or get different answers from different systems.

Automate internal workflows
Use AI to route work, draft outputs, trigger actions, and keep approvals and logs in place.
Useful when repetitive work moves across multiple tools and teams.

Add AI to products and internal tools
Build assistants, guided actions, or decision support into the software your team or customers already use.
Useful when AI needs to be part of the product, not a separate tool.
Related Terms
Ingredient Assertions are one component of a broader provenance framework. These related concepts define how assertions are structured, signed, and validated within the C2PA trust model.
Manifest Assertion
A structured, digitally signed statement within a C2PA manifest that makes a specific claim about the content. An Ingredient Assertion is one type of manifest assertion, alongside others like Action Assertions (describing edits) and Identity Assertions (linking to a creator). Each assertion is individually hashed and collectively signed to form the manifest's claim set.
Provenance Chain
The complete, end-to-end sequence of cryptographically linked manifests that traces a digital asset's entire history. Each link in the chain represents a state change:
- Initial creation: The first manifest with a creator identity assertion
- Ingredient import: A manifest asserting that external source media was incorporated
- Edit action: A manifest recording a transformation (crop, resize, composite)
- Final publication: The terminal manifest, binding all prior history
Altering any prior manifest breaks the cryptographic hash chain, making tampering immediately detectable.
Hard Binding
A method of provenance attachment where the cryptographically signed manifest is embedded directly into the binary structure of the asset file itself. C2PA uses the JUMBF (JPEG Universal Metadata Box Format) container to embed manifests into JPEG, PNG, and other formats. Hard binding ensures:
- The provenance data travels with the file
- No external dependencies for verification
- Resistance to accidental separation of asset and metadata
Contrast with Soft Binding, where the manifest is stored as a sidecar file or cloud URL.
Claim Signature
A cryptographic digital signature generated over the complete set of assertions in a manifest. The signature binds all assertions—including any Ingredient Assertions—to a specific identity and ensures:
- Integrity: Any modification to an assertion invalidates the signature
- Non-repudiation: The signer cannot deny having made the claim
- Authenticity: The signature can be traced to a verified identity via an X.509 Certificate chain
The signing process hashes the assertion set, then encrypts the hash with the signer's private key.
Validator Engine
The software component that performs cryptographic verification of a content credential. When validating an Ingredient Assertion, the engine:
- Verifies the Claim Signature against the signer's public key
- Validates the X.509 Certificate chain to a trusted root
- Performs a Revocation Check via OCSP to ensure the certificate is still valid
- Confirms the signer is on the configured Trust List
- Recomputes all Asset Hashes to detect tampering
Only after all checks pass is the provenance chain displayed as verified.
Edit History Graph
A visual representation of the Provenance Chain as a directed acyclic graph (DAG). Unlike a simple linear chain, a DAG can represent complex compositions where multiple Ingredient Assertions feed into a single composite output. Each node represents a state of the asset, and each edge represents an action or ingredient import. This graph structure enables:
- Tracing any final asset back to all source ingredients
- Identifying which source contributed which visual element
- Auditing the complete lineage for journalistic or legal verification

About the author
Prasad Kumkar
CEO & MD, Inference Systems
Prasad Kumkar is the CEO & MD of Inference Systems and writes about AI systems architecture, LLM infrastructure, model serving, evaluation, and production deployment. Over 5+ years, he has worked across computer vision models, L5 autonomous vehicle systems, and LLM research, with a focus on taking complex AI ideas into real-world engineering systems.
His work and writing cover AI systems, large language models, AI agents, multimodal systems, autonomous systems, inference optimization, RAG, evaluation, and production AI engineering.
Partnered with leading AI, data, and software stack.
How We Work
Custom AI workflows for your Business
One-fit-all AI don't work for modern businesses. At Inferensys, we aim to understand your business & custom requirements; which we use to define most efficient agentic workflows, the data, and the tools for your business.
01
Review the use case
We understand the task, the users, and where AI can actually help.
Read more02
Pick the right approach
We define what needs search, automation, or product integration.
Read more03
Build the first useful version
We implement the part that proves the value first.
Read more04
Improve from there
We add the checks and visibility needed to keep it useful.
Read moreThe first call is a practical review of your use case and the right next step.
Talk to Us