| Proves | The records below are exactly what was sealed at the stated times: any alteration since then, of even one byte, makes verification fail. Anyone can re-run that check with open tools and no PriviNet involvement. |
| Does not prove | That the underlying event was observed completely or accurately by the source system, what caused it, who is at fault, or that any tribunal will admit or credit these records. The automated analysis inside is context, not a finding. Authentication under FRE 902(13)/(14) addresses only whether records are what they claim to be. |
| Incident ID | eee6e5c2-8b07-44d2-89a1-d24ba4248618 |
| Event type | gps.geofence_exit |
| Event time (UTC) | 2026-07-07T19:05:37.350742 |
| Received (UTC) | 2026-07-07T19:05:37.351010 |
| Source type | gps |
| External reference | n/a |
| Subject | n/a |
The analysis section is PriviNet Lumra's automated, ruleset-based classification produced at intake. It is provided for context only. It is not a determination of what occurred, whether any action was or was not required, or who is at fault, and it should not be read as one. The evidentiary value of this ProofPack is that the signed records are authentic and unaltered, which anyone can verify.
| Risk score | 0.8 |
| Urgency | high |
| Classification | high_risk_wandering |
| Escalation required | True |
| Reason | Watcher score 10/10 with urgency 'high' and classification 'high_risk_wandering'. |
| Confidence | |
| Second-opinion check | not run |
| Ruleset | gps_wandering_v1 0.1.0 |
User exited a known safe zone with battery low (22%), and no caregiver acknowledgment has been recorded. Risk score 0.8.
| Signing class | Source-signed (a device key verifiably signed this event at the source; PriviNet also sealed it at intake) |
| Signature status | cloud_signed |
| Digests recomputed and matched | True |
| Signature valid | True |
| Checked at (UTC) | 2026-07-07T19:05:37.619131 |
| Composite record digest (SHA-256) | 4cf8c05fd90c0ab16ffdabd3a10e9eab4cbb58f1b75e74c4f5f7b5bda08f47b6 |
| Signing key id | kms-1944107aa98ec035 |
| Algorithm | ecdsa-p256-sha256 |
| Public verification key (hex) | 04bc55de97e806fbeaf95298588a87cf7f1404640f7b9d359fbbc0f1b2bf408f8be837d1cfa641778a11fd9776be566a2c938b8891d29a7182c15500a05b2e6655 |
PriviNet production key held in a cloud HSM (non-extractable; not itself a third-party time-stamp or CA anchor)
Source signature: the device metalert-smartsole-002 signed this exact reading with its own Ed25519 key at capture, and that signature is carried in this pack and independently verifiable against the device key published at privinet.net/keys.txt. This is signed at the source, not only sealed by PriviNet.
A manifest signature binds this entire document, not just the inner records: the displayed fields, the signing metadata, and the digests of every included object are covered, so altering anything shown here breaks verification.
Independent timestamp anchor: an RFC 3161 token from https://freetsa.org/tsr fixes this record in time without relying on PriviNet's clock. Verify it with the instructions in the machine data below.
This ProofPack is self-verifying with open tools and no PriviNet servers.
Hash the objects under canonical_inputs (NOT the human-readable bundle,
which is a display view). Use the canonicalization_spec exactly.
1. Recompute SHA-256 over the canonical JSON of canonical_inputs.normalized_payload, .analysis, and .evidence_window. Confirm each matches
proof_record.normalized_payload_hash, analysis_hash, and
evidence_window_hash respectively (an omitted evidence_window means the
stored evidence_window_hash is null).
2. Recompute the composite: SHA-256 of the UTF-8 string
'privinet.lumra.v1.event-proof|<payload_hash>|<analysis_hash>|<evidence_window_hash or empty>'.
Confirm it matches proof_record.event_hash.
3. Verify proof_record.signature over the ASCII bytes of event_hash using
proof_record.public_key_hex, per proof_record.algorithm:
- ed25519: 32-byte public key (hex), 64-byte raw signature (hex).
- ecdsa-p256-sha256: 65-byte uncompressed P-256 public key (hex,
leading 04), DER-encoded ECDSA signature (hex), message hashed with
SHA-256 (standard ECDSA verify over the ASCII bytes of event_hash).
A single altered byte in any canonical_inputs object breaks step 1, 2, or 3.For review and signature by your qualified person (IT director, records custodian, or forensic expert). This is a template, not legal advice.
The exact objects that were hashed, so a reviewer can reproduce every digest byte-for-byte. Hidden when printed.
{
"incident_id": "eee6e5c2-8b07-44d2-89a1-d24ba4248618",
"canonical_inputs": {
"normalized_payload": {
"partner_id": "metalert",
"source_id": "smartsole_002",
"source_type": "gps",
"event_type": "gps.geofence_exit",
"timestamp": "2026-07-07T19:05:37.350742",
"received_at": "2026-07-07T19:05:37.351010",
"trigger_timestamp": "2026-07-07T19:05:37.350742",
"subject_id": null,
"location": {
"lat": 34.0522,
"lng": -118.2437,
"accuracy_m": 14
},
"payload": {
"partner_id": "metalert",
"device_id": "smartsole_002",
"event_type": "geofence_exit",
"timestamp": "2026-07-07T19:05:37.350742",
"trigger_timestamp": "2026-07-07T19:05:37.350742",
"lat": 34.0522,
"lng": -118.2437,
"speed": 1.6,
"bearing": 270,
"battery": 22,
"gps_accuracy_m": 14,
"zone_id": "home",
"zone_name": "Home",
"caregiver_acknowledged": false,
"pre_trigger_window_seconds": 10,
"post_trigger_window_seconds": 10
},
"metadata": {
"speed": 1.6,
"bearing": 270,
"battery": 22,
"zone_id": "home",
"zone_name": "Home",
"time_of_day": null,
"caregiver_acknowledged": false
},
"evidence_window": {
"pre_trigger_window_seconds": 10,
"post_trigger_window_seconds": 10
}
},
"analysis": {
"risk_score": 0.8,
"urgency": "high",
"classification": "high_risk_wandering",
"explanation": "User exited a known safe zone with battery low (22%), and no caregiver acknowledgment has been recorded. Risk score 0.8.",
"recommended_action": "Notify the primary caregiver immediately and escalate to backup caregiver if no acknowledgment occurs within 3 minutes.",
"confidence": 0.85,
"watcher_score": 10,
"escalation_required": true,
"escalation_reason": "Watcher score 10/10 with urgency 'high' and classification 'high_risk_wandering'.",
"secondary_ai_status": "placeholder",
"ruleset_name": "gps_wandering_v1",
"ruleset_version": "0.1.0",
"analysis_version": "0.1.0"
},
"evidence_window": {
"pre_trigger_window_seconds": 10,
"post_trigger_window_seconds": 10,
"evidence_window_start": "2026-07-07T19:05:27.350742",
"evidence_window_end": "2026-07-07T19:05:47.350742",
"proof_window_available": false,
"proof_window_policy": null,
"proof_window_reference": null,
"media_digest_pre": null,
"media_digest_trigger": null,
"media_digest_post": null
}
},
"canonicalization_spec": "Canonical JSON, matching the producer exactly: json.dumps(obj, sort_keys=True, separators=(',', ':'), ensure_ascii=False), encoded UTF-8. datetimes are ISO-8601 strings as already serialized in canonical_inputs. Hash each canonical_inputs object exactly as given; do not re-map or reorder.",
"proof_record": {
"id": "797be313-23df-431e-bdcd-d2af16813ade",
"event_hash": "4cf8c05fd90c0ab16ffdabd3a10e9eab4cbb58f1b75e74c4f5f7b5bda08f47b6",
"normalized_payload_hash": "1e247c1975f930c63e70c8a6e3df3a51ac6ea1cb6e70889724f8682b01be9325",
"analysis_hash": "d233e289d5a2cf432f3483fc6da6b4f695b6fd16def018bf312fe8a745e2e00b",
"evidence_window_hash": "15300b926fbc913ddd6ba7ede85e17462d3204ebfc8377b843887e57e3f93a2f",
"signature": "3046022100d48c40f8380d143cef019b3324608367034bf29eb170cb263bb60aa2589f69f30221008f857e000e01891e70a88df2aa2cbe4e58f23019fbeb64dfe56bb9f7029e032d",
"signer_type": "kms_hsm_key",
"key_id": "kms-1944107aa98ec035",
"public_key_hex": "04bc55de97e806fbeaf95298588a87cf7f1404640f7b9d359fbbc0f1b2bf408f8be837d1cfa641778a11fd9776be566a2c938b8891d29a7182c15500a05b2e6655",
"algorithm": "ecdsa-p256-sha256",
"signed_at": "2026-07-07T19:05:37.530221",
"proof_mode": "platform_secondary_signature",
"raw_payload_hash": "47bd6fdbe9b3337a2a569baf6406087b8a333de0fb75e1469f86cf3236c03ced",
"hash_context": "privinet.lumra.v1.event-proof",
"signer_note": "PriviNet production key held in a cloud HSM (non-extractable; not itself a third-party time-stamp or CA anchor)"
},
"manifest": {
"manifest_version": "2",
"incident_id": "eee6e5c2-8b07-44d2-89a1-d24ba4248618",
"generated_at": "2026-07-07T19:05:37.619220",
"event_hash": "4cf8c05fd90c0ab16ffdabd3a10e9eab4cbb58f1b75e74c4f5f7b5bda08f47b6",
"key_id": "kms-1944107aa98ec035",
"signer_type": "kms_hsm_key",
"algorithm": "ecdsa-p256-sha256",
"public_key_hex": "04bc55de97e806fbeaf95298588a87cf7f1404640f7b9d359fbbc0f1b2bf408f8be837d1cfa641778a11fd9776be566a2c938b8891d29a7182c15500a05b2e6655",
"signed_at": "2026-07-07T19:05:37.530221",
"signing_class": "Source-signed (a device key verifiably signed this event at the source; PriviNet also sealed it at intake)",
"canonical_inputs_sha256": "080af31c11abc041e9f98dffa0bb2cdc83898454f5a9806622bb0d406505ae64",
"bundle_sha256": "e1ed161edd986a59062c9c195546841b2276b9e80d6595d93df25c34c70d935f",
"timestamp_anchor_status": "anchored",
"timestamp_anchor_imprint_sha256": "c7c459f2b61e9914dd6c13069c6e15632f0b4f93a40a4efcb042797d2847f47a"
},
"manifest_signature": {
"signs": "sha256 hex of the canonical JSON of `manifest`",
"manifest_digest": "8b81a8439dcf1345c86ca568995da5a8357284538226247082d10eb076c9fdce",
"signature": "3044022007206ae4b54b7ac70c0da080c5b72376b8d45e4c89d973d0160811bbfc4a885a022013a32d8baa7371647b5e3abd4de124376e662cddeec66006c767de56c4a7f380",
"key_id": "kms-1944107aa98ec035",
"public_key_hex": "04bc55de97e806fbeaf95298588a87cf7f1404640f7b9d359fbbc0f1b2bf408f8be837d1cfa641778a11fd9776be566a2c938b8891d29a7182c15500a05b2e6655",
"algorithm": "ecdsa-p256-sha256"
},
"timestamp_anchor": {
"status": "anchored",
"standard": "RFC 3161",
"authority": "https://freetsa.org/tsr",
"authorities_tried": [
"https://freetsa.org/tsr"
],
"hashed_field": "sha256 of the ASCII bytes of event_hash",
"imprint_sha256": "c7c459f2b61e9914dd6c13069c6e15632f0b4f93a40a4efcb042797d2847f47a",
"obtained_at": "2026-07-07T19:05:37.619263",
"token_der_base64": "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",
"verify_instructions": "This is a standard RFC 3161 timestamp response over sha256(event_hash). Decode token_der_base64 to a .tsr file and verify with the authority's certificate: openssl ts -verify -data <file-with-event_hash> -in token.tsr -CAfile <authority-ca.pem>. A valid token proves this event_hash existed no later than the token's time, independent of PriviNet."
},
"verification": {
"intact": true,
"components": {
"normalized_payload": true,
"analysis": true,
"evidence_window": true,
"composite": true
},
"recomputed_event_hash": "4cf8c05fd90c0ab16ffdabd3a10e9eab4cbb58f1b75e74c4f5f7b5bda08f47b6",
"stored_event_hash": "4cf8c05fd90c0ab16ffdabd3a10e9eab4cbb58f1b75e74c4f5f7b5bda08f47b6",
"signature_status": "cloud_signed",
"signature_valid": true,
"checked_at": "2026-07-07T19:05:37.619131"
}
}