System limitations

C2PA verifies evidence, not truth.

C2PA Signer helps inspect provenance signals. It does not decide whether an image is real, fake or AI-generated.

File analysis
Manifest
Valid
Certificate
Self-signed
AI detected
Not determined

What it can help verify

  • Content Credentials presenceWhether a file contains C2PA Content Credentials.
  • Manifest integrityWhether a file still matches its signed manifest.
  • Signer identityWho signed the manifest, when certificate data is available.
  • Certificate trust chainWhether certificate trust can be evaluated against a recognized source.

What it does not prove

  • Truth of the contentIt does not prove that visual content is true or factual.
  • Universal AI detectionIt is not an AI detector and does not classify all generated or edited media.
  • No credentials statusNo credentials is not evidence that content is false.
  • Test certificate trustIt does not make test certificates publicly trusted.

Responsible use

Use the report as evidence to investigate.

A C2PA result is one input in a wider review workflow. Teams should combine C2PA evidence with editorial review, source checks, file history and organizational policy.