What this surface is
The Location Trust Manifest is the operator-facing surface that lets a downstream verifier discover the published verification material needed to validate an operational receipt — in one fetch, against a single document. The reference implementation is the npm verifier package; you do not need to consume the manifest by hand for normal verification workflows.
Recommended verifier integration
For nearly all customer use cases, the right path is the published verifier package:
npm install @geoclear/verify-receipt
Three-line API: pass the receipt header + response body, get back { valid, payload }. The package handles fetching, cross-checking, signature verification, and channel selection. No manifest plumbing required on your side.
What this surface does not enumerate
This developer-documentation page does not enumerate receipts, the exact manifest schema, the publication topology, or the rotation procedures. Receipts are emitted on every API response and (optionally) retained by the customer in an Evidence Bundle (Receipt Vault). The published verification material itself is consumed by the verifier package; substrate-level detail is documented in the Security & Verification Whitepaper.
Detailed implementation
The complete manifest schema, channel topology, key-distribution model, rotation cadence, revocation protocol, and operator runbook are documented in the Security & Verification Whitepaper, available to qualified procurement and security reviewers under NDA. Approved evaluators also receive the reference verifier integration guide and the canonical schema specification.
Related: Receipt Vault · Long-horizon verification · Customer-held verification · Offline verifier · Security & Verification Whitepaper (NDA).