On-chain capsule records for public timestamping, provenance and protocol-use evidence. Signed, block-anchored, verifiable by anyone — an evidentiary record, not a patent, trademark, copyright or legal-ownership registry.
→ Gold & Metals Reserve status & policy — where future tokenized-gold reserve operations will be recorded (none executed yet).
SOST capsules attached to on-chain transactions create a signed, timestamped, block-anchored public record demonstrating that a specific text, name, hash, specification or release statement existed at a specific block height and was published by a specific address. The record can be independently verified by anyone running a SOST node.
Use the registry as evidentiary record — alongside, not instead of, formal IP filings, GitHub commits, whitepaper publication, and any other public record you maintain. The blockchain timestamp adds immutability + public verifiability to your existing paper trail. It does not replace the legal pathway.
registry_type, name, acronym, project, statement, evidence_links.CapsuleType::TEMPLATE_FIELDS_OPEN (0x05) — an existing, audited capsule type in include/sost/capsule.h. No new capsule type needed for the first iteration. A future protocol-level PROTOCOL_CLAIM_V1 template id is documented below as a proposed extension.This is the schema of an example registry capsule documenting that SOST Protocol publicly records "PoPC" as the protocol term used for its custody-verification mechanism. Marked as example schema. The PoPC term is now anchored on-chain at block #15,439 — see the resolved record in the Registered capsules list below.
{
"registry_type": "protocol_term",
"name": "Proof of Personal Custody",
"acronym": "PoPC",
"project": "SOST Protocol",
"scope": "protocol mechanism + custody-verification roadmap",
"statement": "SOST Protocol publicly records PoPC as the protocol term used for its Proof of Personal Custody mechanism and the related reserve / custody-verification pathway.",
"evidence_links": [
"https://sostcore.com/sost-whitepaper.html",
"https://sostcore.com/sost-protocol-spec.html",
"https://sostcore.com/sost-popc.html",
"https://github.com/Neob1844/sost-core/blob/main/docs/POPC_MODEL_A_SPECIFICATION.md"
],
"legal_notice": "This is a public timestamp and provenance record. It is not a patent, trademark, or legal ownership registration. Legal rights, if any, depend on applicable law and formal filings where required."
}
{
"txid": "<to be filled in when broadcast>",
"block_height": "<block height at confirmation>",
"block_timestamp": "<UTC, from the block header>",
"signer_address": "sost1...<SOST constitutional genesis address>",
"capsule_type": "0x05 (TEMPLATE_FIELDS_OPEN)",
"capsule_hash": "<sha256 of the canonicalized JSON above>",
"verification_status": "anyone can verify by querying the txid and replaying the capsule decode + signature check"
}
txid from the registry record.capsule_type == 0x05 (or the template id documented for the record) and that the SHA-256 of the decoded payload matches the published capsule hash.block_height and block_timestamp from the block header. These are the immutable evidentiary anchors.A dedicated template id would let nodes and indexers surface registry records as a first-class type without parsing the open template fields. Not implemented in this commit. Documented here as a proposal for a future protocol extension — no consensus change is being made now.
Proposed addition to enum class TemplateId : uint8_t in include/sost/capsule.h:
PROTOCOL_CLAIM_V1 = 0x0B, // public timestamp / provenance record
// for protocol terms, document hashes,
// release statements; payload schema
// defined in this page.
Until that template id is added at consensus level, the same record is published using the existing TEMPLATE_FIELDS_OPEN (0x05) capsule type with the schema fields above. Existing capsule-aware tooling already decodes 0x05, so no new tooling is required to read these records today.
Two equally-valid ways to publish a public, signed, block-anchored capsule on the SOST chain. Method A (Wallet UI) is the easiest path and recommended for almost everyone. Method B (sost-cli) is for operators, scripts and CI/CD. Both produce the SAME on-chain record — same capsule type, same byte-for-byte payload, same verifiability.
sost-cli set up on a machine.sost-cli on PATH.| CRITERION | METHOD A · WALLET | METHOD B · SOST-CLI |
|---|---|---|
| Setup needed | Open a webpage | SOST node + sost-cli + RPC credentials |
| Where the key lives | Your browser, locked behind your password | Operator machine, unlocked at command time |
| Time per capsule | ~1 minute | A single shell command (scriptable) |
| Batch / CI friendly | No (manual) | Yes |
| On-chain result | Identical — same capsule type, same bytes, same signature verification. | |
Whatever content you want to anchor on-chain (a JSON manifesto, a PDF, a release note) needs a stable SHA-256 hash. This hash is what goes inside the capsule.
For the worked example below we use the canonical SOST Protocol PoPC manifesto already committed in the repo at website/api/sost-protocol-popc-manifesto-v1.json (publicly reachable at api/sost-protocol-popc-manifesto-v1.json).
sha256sum website/api/sost-protocol-popc-manifesto-v1.json
Full 64-hex SHA-256 of the manifesto at the time this guide was generated:
First 16 hex chars (used as the on-chain prefix, fits comfortably under the 80-byte open-note cap):
The capsule body string (max 80 bytes, three space-separated fields = namespace + record name + first 16 hex):
sost-protocol popc-manifesto 3bed02e2f5c589e4
Now pick Method A (Wallet UI — easiest) or Method B (sost-cli) below. Either produces the exact same on-chain record.
The wallet page lets you compose a capsule transaction without touching a terminal. The same Open Note capsule mode that sost-cli uses is exposed as a dropdown in the wallet's Compose form.
In the wallet's Compose form, tick “Mark as Protocol Registry entry”. The Message Type locks to Open Note and two fields appear:
beacon-iia-v13-fingerprint.The wallet builds sost-protocol <record-name> <16-hex> automatically, validates it (≤ 80 bytes), and shows a live preview. Click Sign & Broadcast — the capsule is published. After confirmation it appears in the live Registry tables below. Using the Registry is free — you only pay the standard network fee for the transaction.
Prefer full control? The manual steps below (A.2) build the exact same capsule by hand — pick the Open Note dropdown and type the sost-protocol … line yourself.
Open Note — Public text (max 80 chars). A text box appears under the dropdown.
0 / 80).sost-protocol popc-manifesto 3bed02e2f5c589e4 for the worked example) into the capsule text box.
49 / 80. If you see a red error, your line is over 80 bytes — shorten the namespace or the record name.txid · block_height · capsule_text · manifesto sha-256.Ctrl+Shift+R) and reopen. Capsule attach also requires chain height ≥ V12 (block 7,350), which mainnet has been past since 2026-03.Use this method when you are publishing capsules from a script, a CI/CD pipeline or a headless operator machine. It uses the same Open Note capsule mode as Method A and produces the exact same on-chain record. The flow is the one already used for the Trinity Kalgoorlie Phase 1 proof bundle.
28443).sost-cli built and on PATH (build target: cmake --build build --target sost-cli).~/.sost/sost.conf.sost-cli getblockcount should return the current chain tip.<SOURCE_WALLET>, <DEST_ADDRESS> and <AMOUNT> with operator values; the destination can be a dust output to the source itself, and the amount can be the protocol minimum:
sost-cli --rpc-host 127.0.0.1 --rpc-port 28443 \ --rpc-user <USER> --rpc-password <PASS> \ --from <SOURCE_WALLET> \ --to <DEST_ADDRESS> \ --amount <AMOUNT> \ --capsule-mode open-note \ --capsule-text 'sost-protocol popc-manifesto 3bed02e2f5c589e4' \ --sendThe exact flags follow
src/sost-cli.cpp (see --capsule-mode open-note documented at line 686 of that file).
Whichever method you used, the verification path is identical and reproducible by any third party without trusting this page:
sha256sum on it locally.Match means the capsule, the file, and the signing key all line up — the timestamp + author + content tuple is cryptographically proven. No trust in this page required.
Worked example used in both methods above: registering the canonical SOST Protocol PoPC manifesto so the term "Proof of Personal Custody" is timestamped on-chain by the SOST Protocol operator before anyone else attempts to claim it. The fields below were computed in Step 1 and used identically by both methods.
| Manifesto file | api/sost-protocol-popc-manifesto-v1.json |
| Manifesto SHA-256 | 3bed02e2f5c589e494b8e4db99200dc0ae7aa96fe5b8d87167799c51726870f4 |
| Capsule text | sost-protocol popc-manifesto 3bed02e2f5c589e4 |
| Capsule mode | open-note (CapsuleType TEMPLATE_FIELDS_OPEN 0x05 in include/sost/capsule.h) |
| Length check | 49 / 80 bytes — comfortably under the open-note cap |
Ctrl+Shift+R) on sost-wallet.html.Public on-chain capsule records published by SOST-Protocol-associated infrastructure. Each row is independently verifiable from the SOST Explorer and from the linked off-chain document. SOST Protocol does not endorse the truth of off-chain content beyond what the manifest itself says; the protocol's role is to anchor the timestamp and the signature on-chain.
| Block | #11,034 · 2026-05-31 06:17:21 UTC |
| Txid | c6ade3c635d0e5f8814e3512db7974d70908d6bf5000ddc7aafa708452f810a1 |
| Signer | OFFICIAL — developer sost1a8eae8f80fedd8d86187db628a0d81e0367f76de (whitelisted) |
| Capsule text | sost-protocol beacon-iia-v13 ceb19dd6b5fd676f |
| Manifesto file | api/sost-protocol-beacon-iia-v13-fingerprint-v1.json |
| Manifesto SHA-256 | ceb19dd6b5fd676f0ec8aa97d1514f09b01a8b000f183afa9a8a0aaf9c135c48 |
| Key fingerprint | bbb560e3ec86114a59762d467d645c88cfe0497a8f7ca542c973e2e0def8186b |
| Status | registered=true · capsule_mode=open-note · advisory_only=true |
First OFFICIAL Protocol Registry entry. This anchors the canonical Beacon Phase II-A operator-key fingerprint on the SOST chain itself. The on-chain capsule carries the first 16 hex (ceb19dd6b5fd676f) of the manifesto's SHA-256; the manifesto publishes the full key fingerprint bbb560e3…. Anyone can verify independently: (1) download the manifesto JSON and confirm its SHA-256 starts with ceb19dd6b5fd676f; (2) recompute the key fingerprint from BEACON_PUBKEY_HEX in src/beacon.cpp and confirm it equals bbb560e3…. Advisory only — the Beacon key never affects consensus, mining, or block validity. → Beacon verification guide
| Block | #13,483 · 2026-06-17 06:44:24 UTC |
| Txid | 58448c80da83b11fa135399db88a8be93b6bcf6c5cc749e8e797f8982e0f4979 |
| Signer | OFFICIAL — GeaSpirit / Protocol Registry operator sost1ca9097d830b74495b95db9d779ad63c90579bc18 (whitelisted) |
| Capsule text | sost-protocol geaspirit-ree-v04 9da4548fdbfe8b57 |
| Commitment file | proofs/ree-prospective-v04-20260616_commitment.json |
| Commitment SHA-256 | 9da4548fdbfe8b57090116e65db4ae15b948eb67927243ac9057da98b8b89d75 |
| Merkle root | 7f29c11134232fcc7e998c8df7efe26ea0bc453de91792a61351368ca5a1bf7a |
| Campaign | 50 sealed targets + 50 controls · score_type=relative_regional_rank · calibration_status=unavailable |
| Receipt | proofs/ree-prospective-v04-20260616_anchor_receipt.json |
| Status | registered=true · capsule_mode=open-note · sealed=true · prospective=true · unresolved=true |
What this is. GeaSpirit's private regional REE prior (a frozen model that ranks ground by geological favourability for carbonatite/alkaline rare-earth systems, using open data + craton context) selected 50 highest-ranked novel target areas and 50 controls, froze the model and sealed the set behind a Merkle tree. The exact coordinates, scores and evidence stay private and encrypted; only the file SHA-256 (9da4548f…) and the Merkle root (7f29c111…) are public. This capsule timestamps that sealed campaign on the SOST chain.
What it proves. Precedence + integrity: the campaign existed, unchanged, no later than block #13,483, signed by the operator address. The 50 targets cannot be edited after the fact without breaking these hashes — so any future hit cannot be cherry-picked retroactively.
What it does NOT prove. It is not evidence of mineralisation, grade, depth, tonnage, resources or reserves. The score_type is a relative regional rank, not a probability of a deposit. The campaign is unresolved; targets will be adjudicated later only by independent evidence (government/lab assays, drilling, primary publications) under the published resolution protocol. Verify independently: (1) fetch the commitment file and confirm its SHA-256 starts with 9da4548fdbfe8b57 (the on-chain capsule prefix); (2) confirm the JSON's merkle_root equals 7f29c111…; (3) look up the txid in the explorer and confirm the Open Note capsule + signing address.
| Block | #15,439 · 2026-06-30 19:55:31 UTC |
| Txid | 6fa76c2a7a42f93de0f940aafffbbbc4cb0d11c3abd7dc513fad486085281dab |
| Signer | OFFICIAL — Protocol Registry operator sost1ca9097d830b74495b95db9d779ad63c90579bc18 (whitelisted) |
| Capsule text | sost-protocol popc-manifesto 3bed02e2f5c589e4 |
| Manifesto file | api/sost-protocol-popc-manifesto-v1.json |
| Manifesto SHA-256 | 3bed02e2f5c589e494b8e4db99200dc0ae7aa96fe5b8d87167799c51726870f4 |
| Status | registered=true · capsule_mode=open-note · registry_type=protocol_term |
What this is. A signed, block-anchored timestamp recording that SOST Protocol publicly uses "Proof of Personal Custody" (PoPC) as a protocol term, binding it to the canonical PoPC manifesto (api/sost-protocol-popc-manifesto-v1.json). The on-chain capsule carries the first 16 hex (3bed02e2f5c589e4) of the manifesto's SHA-256.
What it proves. Precedence + integrity: the PoPC term and that exact manifesto existed, unchanged, no later than block #15,439, published by the operator address.
What it does NOT prove. It is not a patent, trademark or copyright, and it does not certify the truth of any claim in the manifesto. Verify independently: (1) fetch the manifesto JSON and confirm its SHA-256 starts with 3bed02e2f5c589e4 (the on-chain capsule prefix); (2) look up the txid in the explorer and confirm the Open Note capsule + signing address.
| AOI | Kalgoorlie Phase 1 |
| Block | #8085 |
| Capsule text | trinity-proof kalgoorlie_phase1 3a28a4b112fe95df |
| Txid | d68678b5d15ca8a60b70a7aa17647bfa12271d342eef066e1b4a832f4624f3db |
| Proof SHA-256 | 3a28a4b112fe95df85ab2ab91deb7698ebeb1d9182297f06635fd12fd4053a02 |
| Merkle root | a818a1e4799ec34fd5a65b17d180a9534f791d4cd49f54c97b21c11d7b0e28b4 |
| Pipeline | GeaSpirit scorecard → AI Council dossier → Useful Compute plan (dry-run) → Campaign manifest → Proof bundle |
| Status | registered=true · no_rewards_active=true · capsule_mode=open-note |
| More info | sost-trinity.html |
This capsule is a public cryptographic timestamp proving that Trinity existed and produced its first verifiable proof bundle on SOST at block #8085. It is not a mineral reserve claim, not a geological conclusion, and not an announcement of active Useful Compute rewards. The bundle binds four SHA-256 anchors (scorecard + dossier + Useful Compute plan + campaign manifest) into one document with a Merkle root; the on-chain capsule carries the first 16 hex of the bundle SHA-256, and the full 64-hex hash lives in the published JSON for independent verification by any third party.
| Registry type | protocol_term |
| Term | Proof of Personal Custody (PoPC) |
| Project | SOST Protocol |
| Manifesto file | api/sost-protocol-popc-manifesto-v1.json |
| Manifesto SHA-256 | 3bed02e2f5c589e494b8e4db99200dc0ae7aa96fe5b8d87167799c51726870f4 |
| Capsule text (planned) | sost-protocol popc-manifesto 3bed02e2f5c589e4 |
| Capsule mode | open-note |
| Block | pending — populated after operator runs the registration command above |
| Txid | pending |
This row will be promoted to full ON-CHAIN status once the SOST Protocol operator publishes the capsule on mainnet following the registration guide above. The manifesto SHA-256 above is the canonical hash of the committed JSON file; if the JSON is ever changed, the hash changes and a new manifesto version must be issued (v2, v3, etc.) and re-anchored on chain.
Auto-scanned from the SOST chain. Any transaction carrying an Open Note capsule whose text begins with sost-protocol is listed here. Entries are classified by signer: addresses on the SOST Protocol whitelist appear as Official, everyone else as Community. Nothing is hidden or deleted — both tables read the same chain with the same parser; only the signer predicate differs.
sost-protocol capsule via the wallet.
Verified entries signed by SOST Protocol constitutional addresses (genesis / developer whitelist). The whitelist is a frontend classifier only — it never hides or deletes anything on-chain. Future iterations may expand the whitelist or open additional submission paths.
| Block | Time (UTC) | Record | Anchor | Signer | Txid | Status |
|---|---|---|---|---|---|---|
| Not scanned yet. | ||||||
Community-submitted entries. Not official SOST Protocol records. Anyone with SOST can publish via the wallet. SOST Protocol does not endorse the truth of off-chain content beyond what each manifest itself says.
| Block | Time (UTC) | Record | Anchor | Signer | Txid | Status |
|---|---|---|---|---|---|---|
| Not scanned yet. | ||||||
Not active. Documented so future iterations have a clear, non-monetized starting point.
A public registry that anyone can append to without cost is exposed to spam — thousands of trivial records flooding the chain. SOST already requires a normal network transaction fee for every transaction (paid in SOST), which is the primary anti-spam mechanism on the base layer.
For a future iteration, a small application-level fee (also paid in SOST) could be required for registry records, in addition to the normal network fee. This would be enforced at the indexer / surface layer (not at consensus), so a misconfigured indexer cannot censor records. No such fee is active, and no current iteration of this page enforces or collects any payment.
The registry is read-only documentation in this iteration. Records are published manually by the operator via a normal SOST transaction with an attached capsule. Third parties are not invited to submit registry records yet — that pathway is reserved for a future design after the anti-spam, identity-attribution and dispute-handling models are settled.
SOST Protocol Registry disclaimer. The SOST Protocol Registry is an evidentiary on-chain timestamp and provenance system. It is not a patent office, trademark registry, copyright registry, or legal-ownership registry. A capsule record establishes that a specific content existed at a specific block height under a specific signing key — nothing more, nothing less. Legal rights, if any, depend on applicable law and formal filings where required. This page is informational and not legal advice. If you require legal protection of intellectual property, consult a qualified attorney in your jurisdiction.
SOST OTC / P2P disclaimer. SOST Community OTC / P2P Board is a user-to-user discussion area for voluntary SOST offers. SOST Protocol does not intermediate trades, custody funds, provide escrow, guarantee counterparties, or guarantee liquidity. Admins never DM first. Use small test transactions and verify all addresses independently. No direct founder sale is currently active. SOST Protocol is not a broker, exchange, trading desk, escrow service, market maker, or official liquidity program.