specifications

AgentPKI Protocol — published specifications

Two published spec versions: v0.1 defined the core protocol (passport format, signing, verification, trust tiers); v0.2 adds the operational layer (KV-backed directory cache, CRL, Mode B replay detection, abuse aggregation). v0.2 is additive — no breaking changes from v0.1.

latest

draft · active

v0.2 published 2026-05-27

Adds production operational layer: KV-backed issuer directory cache with explicit TTL hints, full Certificate Revocation List (CRL) format, Mode B replay detection via Durable Object, abuse aggregation reporting endpoint, and extended verifier response schema (crl_fresh, replay_checked, cached_until).

What's new since v0.1

+Tiered issuer directory caching (memory → KV → origin)
+CRL document format + verifier behavior + caching rules
+Durable-Object-backed replay detection for Mode B
+POST /v1/abuse/report aggregation endpoint
+Same-zone Worker fetch trap documented + service-binding fix
·Fully backward-compatible with v0.1 — no wire-format changes

Read v0.2 spec

draft · stable

v0.1 published 2026-05-21

The protocol core: passport token format (PASETO v4), Ed25519 signing, issuer directory at /.well-known/agentpki-issuer.json, three trust tiers (T1 DNS, T2 KYB, T3 hardware), Mode A bearer + Mode B RFC 9421 signed wire formats, verification procedure, capability scoping.