Skip to main content
GET
/
attestation
/
report
Attestation Report
curl --request GET \
  --url https://api.redpill.ai/v1/attestation/report \
  --header 'Authorization: Bearer <token>'
/v1/attestation/report is a legacy endpoint kept for backward compatibility with earlier API clients. It now returns the gateway’s TEE attestation report, proving which gateway workload served your request. It is the same gateway attestation as the canonical GET /v1/aci/attestation; the two endpoints share the same underlying report. New integrations should use the canonical endpoint. The legacy form differs in two ways:
  • It adds top-level signing_address, signing_algo, and signing_public_key, derived from the gateway’s keyset for older clients.
  • It collapses all_attestations to a single entry.
This endpoint now returns the gateway’s attestation. Earlier API versions returned the upstream model’s attestation here. With the attested gateway, the model provider’s verification for a given response is recorded in the receipt (upstream.verified event) and the attested session instead.
nonce
string
A fresh random value (for example 16 bytes hex). The gateway binds it into the quote’s report_data so you can prove the report is not a replay.

Response

The attestation object, workload_id, workload_keyset_digest, and service_capabilities match GET /v1/aci/attestation. The differences are the added top-level signing_address, signing_algo, and signing_public_key fields, and the collapsed all_attestations array. See the canonical page for the full field reference.

signing_algo query parameter

Pass ?signing_algo=ecdsa (default) or ?signing_algo=ed25519 to select which keyset key the legacy signing_address and signing_public_key are derived from.

Get attestation report

Signature