A Trust List is a digitally signed, authoritative catalog of public keys, X.509 Certificates, and issuer identifiers that a Validator Engine consults to determine if a Content Credential is trustworthy. It acts as the foundational Trust Anchor for the entire provenance verification ecosystem, explicitly defining which Certificate Authorities, signing authorities, and identity providers are recognized as legitimate sources of truth. Without a Trust List, a verifier has no basis to distinguish a cryptographically valid signature from a trusted source versus one from a self-signed or malicious actor.
Glossary
Trust List

What is a Trust List?
A Trust List is a curated, cryptographically signed inventory of trusted issuers and validators that a verifier application uses to determine the authenticity and trustworthiness of a content credential.
Trust Lists are typically distributed as a signed file, such as a JSON Web Token (JWT) or a CMS signed-data structure, ensuring the list itself has not been tampered with. During Provenance Verification, the validator engine cross-references the Claim Signature's certificate chain against the active Trust List to confirm the signer is a recognized member. This mechanism enables a robust, decentralized trust model where application providers can independently curate their own lists, allowing for domain-specific trust decisions without relying on a single global authority.
Key Characteristics of a Trust List
A Trust List is the root of all validation logic in a content provenance ecosystem. It defines the authoritative set of entities a verifier application will recognize as legitimate, enabling the critical binary decision: is this credential trustworthy or not?
Curated Issuer Authorization
A Trust List is not a passive collection; it is a curated, policy-driven manifest of approved identity providers. It answers the question: 'Who is allowed to make claims about content?'
- Allowlisting: The list operates on an allowlist principle. Any issuer not on the list is treated as untrusted, regardless of the mathematical validity of their signature.
- Granular Permissions: Advanced lists can constrain what specific claims an issuer is trusted to make. For example, a news organization's CA might be trusted for
copyrightassertions but not foridentityassertions. - Governance: The curation process is a governance function, often managed by an industry consortium or a chief trust officer, not an automated algorithm.
Validator Engine Integration
The Trust List is a runtime configuration file consumed by the Validator Engine. It is the operational database that drives the verification decision logic.
- Lookup Mechanism: During validation, the engine extracts the issuer's certificate chain from the manifest and performs a lookup against the Trust List to find a matching trusted root.
- Offline Capability: A complete Trust List can be bundled with a verifier application, enabling provenance validation in air-gapped or offline environments without relying on a live network request.
- Update Cadence: The list must be updated regularly to add new trusted issuers and, critically, to distribute revocation information for compromised CAs.
Revocation and Expiry Management
Trust is temporal. A Trust List must provide mechanisms for revoking trust when a signing key is compromised or an issuer's authority is rescinded.
- CRL Distribution Points: The list can specify where to fetch Certificate Revocation Lists (CRLs) to check if a previously valid certificate has been revoked.
- OCSP Stapling Support: It can mandate or prefer Online Certificate Status Protocol (OCSP) stapling for real-time revocation status checks without revealing the specific certificate being validated.
- 'Not After' Enforcement: The Trust List itself has a validity period. A verifier must reject any list that has expired, ensuring operators are forced to update to the latest trust posture.
Distinguished from Web PKI
A provenance Trust List is fundamentally different from the trust store in your web browser. It serves a narrower, higher-assurance purpose.
- Scope: A browser trust store must be universal to connect to any website. A provenance Trust List is domain-specific, tailored for media and content authenticity.
- Risk Profile: The consequence of a failure is different. A rogue TLS certificate enables eavesdropping; a rogue content credential enables large-scale disinformation. The Trust List's curation reflects this higher-stakes risk.
- Identity Verification: Issuers on a provenance Trust List typically undergo a rigorous, out-of-band identity verification process, unlike the automated domain validation common in Web PKI.
Frequently Asked Questions
A trust list is the root of all content credential verification. Below are the most common questions about how these cryptographically signed lists of trusted issuers function within the C2PA ecosystem.
A Trust List is a curated, cryptographically signed manifest of trusted issuers, Certificate Authorities (CAs), and validators that a verifier application consults to determine if a content credential is trustworthy. It functions as the root of trust in the C2PA ecosystem. When a verifier encounters a signed manifest, it checks the signer's certificate against the trust list to see if the issuer is authorized. Without a trust list, a verifier has no basis to distinguish a legitimate photojournalist's signature from a bad actor's self-signed certificate. Trust lists are typically distributed as signed JSON Web Token (JWT) or similar structures and are updated periodically to add new members or revoke compromised ones.
Enabling Efficiency, Speed & Accuracy
Intelligent Analysis, Decision & Execution
We build AI systems for teams that need search across company data, workflow automation across tools, or AI features inside products and internal software.
Talk to Us
Search across company data
Give teams answers from docs, tickets, runbooks, and product data with sources and permissions.
Useful when people spend too long searching or get different answers from different systems.

Automate internal workflows
Use AI to route work, draft outputs, trigger actions, and keep approvals and logs in place.
Useful when repetitive work moves across multiple tools and teams.

Add AI to products and internal tools
Build assistants, guided actions, or decision support into the software your team or customers already use.
Useful when AI needs to be part of the product, not a separate tool.
Related Terms
A Trust List does not operate in isolation. It is the linchpin of a broader cryptographic verification ecosystem. The following concepts define how trust lists are constructed, validated, and consumed to establish end-to-end content authenticity.
Validator Engine
The software component that consumes a Trust List to perform cryptographic verification of a content credential. It checks signature validity, certificate chains, and revocation status.
- Queries the Trust List to determine if a signer is authorized
- Performs OCSP and CRL revocation checks
- Validates the entire certificate chain up to the Trust Anchor
- Returns a binary pass/fail or a confidence score
X.509 Certificate
A standard digital certificate format that binds a public key to an identity verified by a Certificate Authority (CA). It forms the foundational identity primitive that Trust Lists authorize.
- Contains the subject's public key and identity attributes
- Signed by an issuer CA to establish a Chain of Trust
- Has a defined validity period and can be revoked
- Used to sign Claim Signatures within C2PA manifests
Trust Anchor
A foundational, inherently trusted source of cryptographic truth—typically a root Certificate Authority—from which a chain of trust is derived. The Trust List explicitly defines which root CAs are trusted.
- The ultimate root of the Chain of Trust
- Its public key is pre-installed in the Validator Engine
- Compromise of a Trust Anchor invalidates all downstream trust
- Managed with extreme security in hardware security modules (HSMs)
Revocation Check
The process of querying a certificate authority's database to ensure a digital certificate used to sign a content credential has not been revoked before its expiration date. A Trust List is useless without active revocation checking.
- Uses OCSP (Online Certificate Status Protocol) for real-time checks
- Falls back to CRLs (Certificate Revocation Lists) for batch validation
- A revoked certificate in the chain invalidates the entire Provenance Verification
- Critical for responding to key compromise events
Claim Signature
A cryptographic digital signature generated over a set of assertions within a C2PA manifest. The Trust List determines if the certificate used to create this signature is authorized.
- Binds assertions to a specific identity with non-repudiation
- Uses the private key corresponding to the public key in an X.509 Certificate
- Any tampering with the assertions invalidates the signature
- Verified by the Validator Engine during provenance checks
Provenance Verification
The complete end-to-end process of cryptographically validating all signatures, hashes, and certificate chains within a content credential. The Trust List is the gatekeeper that authorizes which signers are legitimate.
- Step 1: Validate Asset Hashing integrity
- Step 2: Verify all Claim Signatures cryptographically
- Step 3: Walk the certificate chain to a Trust Anchor
- Step 4: Confirm the signer is on the active Trust List
- Step 5: Perform Revocation Checks on all certificates

About the author
Prasad Kumkar
CEO & MD, Inference Systems
Prasad Kumkar is the CEO & MD of Inference Systems and writes about AI systems architecture, LLM infrastructure, model serving, evaluation, and production deployment. Over 5+ years, he has worked across computer vision models, L5 autonomous vehicle systems, and LLM research, with a focus on taking complex AI ideas into real-world engineering systems.
His work and writing cover AI systems, large language models, AI agents, multimodal systems, autonomous systems, inference optimization, RAG, evaluation, and production AI engineering.
Partnered with leading AI, data, and software stack.
How We Work
Custom AI workflows for your Business
One-fit-all AI don't work for modern businesses. At Inferensys, we aim to understand your business & custom requirements; which we use to define most efficient agentic workflows, the data, and the tools for your business.
01
Review the use case
We understand the task, the users, and where AI can actually help.
Read more02
Pick the right approach
We define what needs search, automation, or product integration.
Read more03
Build the first useful version
We implement the part that proves the value first.
Read more04
Improve from there
We add the checks and visibility needed to keep it useful.
Read moreThe first call is a practical review of your use case and the right next step.
Talk to Us