View raw credential JSON
What this page does — the token holds a content-addressed IPFS pointer to an encrypted vouch credential plus the symmetric key to decrypt it. We fetch, decrypt, then verify the two ed25519 signatures (issuer + subject countersignature) against the on-chain DIDs of both parties. The credential never leaves your browser. The verifier learns nothing about you beyond what's in this single vouch.