contentauth
diff --git a/‎.github/workflows/ci.yml‎
Lines changed: 3 additions & 3 deletions b/‎.github/workflows/ci.yml‎
Lines changed: 3 additions & 3 deletions
diff --git a/‎Cargo.lock‎
Lines changed: 1 addition & 0 deletions b/‎Cargo.lock‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎c2pa_c_ffi/src/c_api.rs‎
Lines changed: 1 addition & 1 deletion b/‎c2pa_c_ffi/src/c_api.rs‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎c2pa_c_ffi/src/error.rs‎
Lines changed: 1 addition & 1 deletion b/‎c2pa_c_ffi/src/error.rs‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎cli/sample/test.json‎
Lines changed: 0 additions & 13 deletions b/‎cli/sample/test.json‎
Lines changed: 0 additions & 13 deletions
diff --git a/‎cli/tests/fixtures/ingredient_test.json‎
Lines changed: 2 additions & 3 deletions b/‎cli/tests/fixtures/ingredient_test.json‎
Lines changed: 2 additions & 3 deletions
diff --git a/‎make_test_images/Cargo.toml‎
Lines changed: 7 additions & 2 deletions b/‎make_test_images/Cargo.toml‎
Lines changed: 7 additions & 2 deletions
diff --git a/‎make_test_images/json_manifests_v2/C.json‎
Lines changed: 19 additions & 37 deletions b/‎make_test_images/json_manifests_v2/C.json‎
Lines changed: 19 additions & 37 deletions
diff --git a/‎make_test_images/json_manifests_v2/CA.json‎
Lines changed: 22 additions & 43 deletions b/‎make_test_images/json_manifests_v2/CA.json‎
Lines changed: 22 additions & 43 deletions
@@ -432,7 +432,7 @@ jobs:
         env:
           FEATURES: ${{needs.get-features.outputs.openssl-features}}
         run: |
-          cargo +nightly-2025-01-24 test -Z direct-minimal-versions --all-targets --features "$FEATURES"
+          cargo +nightly-2025-07-28 test -Z direct-minimal-versions --all-targets --features "$FEATURES"
 
   clippy_check:
     name: Clippy
@@ -482,11 +482,11 @@ jobs:
       - name: Install nightly toolchain
         uses: dtolnay/rust-toolchain@master
         with:
-          toolchain: nightly-2025-06-28
+          toolchain: nightly-2025-07-28
           components: rustfmt
 
       - name: Check format
-        run: cargo +nightly-2025-06-28 fmt --all -- --check
+        run: cargo +nightly-2025-07-28 fmt --all -- --check
 
   docs_rs:
     name: Preflight docs.rs build
 
@@ -1667,7 +1667,7 @@ mod tests {
 
     #[test]
     fn test_c2pa_free_string_array_with_count_1() {
-        let strings = vec![CString::new("image/jpg").unwrap()];
+        let strings = vec![CString::new("image/jpeg").unwrap()];
         let ptrs: Vec<*mut c_char> = strings.into_iter().map(|s| s.into_raw()).collect();
         let ptr = ptrs.as_ptr() as *const *const c_char;
         let count = ptrs.len();
 
@@ -80,7 +80,7 @@ impl Error {
             | UpdateManifestInvalid
             | TooManyManifestStores => Self::Manifest(err_str),
             ClaimMissing { label } => Self::ManifestNotFound(err_str),
-            AssertionDecoding(_) | ClaimDecoding => Self::Decoding(err_str),
+            AssertionDecoding(_) | ClaimDecoding(_) => Self::Decoding(err_str),
             AssertionEncoding(_) | XmlWriteError | ClaimEncoding => Self::Encoding(err_str),
             InvalidCoseSignature { coset_error } => Self::Signature(err_str),
             CoseSignatureAlgorithmNotSupported
 
@@ -7,19 +7,6 @@
   }],
   "title": "My Title",
   "assertions": [
-    {
-      "label": "stds.schema-org.CreativeWork",
-      "data": {
-        "@context": "https://schema.org",
-        "@type": "CreativeWork",
-        "author": [
-          {
-            "@type": "Person",
-            "name": "Joe Bloggs"
-          }
-        ]
-      }
-    },
     {
       "label": "c2pa.actions",
       "data": {
 
@@ -21,7 +21,6 @@
                 "actions": [
                     {
                         "action": "c2pa.created",
-                        "instanceId": "xmp.iid:7b57930e-2f23-47fc-affe-0400d70b738d",
                         "digitalSourceType": "http://cv.iptc.org/newscodes/digitalsourcetype/algorithmicMedia",
                         "softwareAgent": {
                             "name": "TestApp",
@@ -31,7 +30,7 @@
                     },
                     {
                         "action": "c2pa.opened",
-                        "instanceId": "xmp.iid:7b57930e-2f23-47fc-affe-0400d70b738d",
+                        "instanceId": "xmp.iid:9867c3b4-465e-42e4-8064-76c0c0fe3d16",
                         "parameters": {
                             "description": "import"
                         },
@@ -122,7 +121,7 @@
               "format": "image/jpeg",
               "identifier": "verify.jpeg"
             },
-            "relationship": "componentOf"
+            "relationship": "parentOf"
         }
     ],
     "ingredient_paths": [
 
@@ -12,7 +12,12 @@ unexpected_cfgs = { level = "warn", check-cfg = ['cfg(test)'] }
 
 [dependencies]
 anyhow = "1.0.40"
-c2pa = { workspace = true }
+c2pa = { path = "../sdk", version = "0.58.0", features = [
+	"fetch_remote_manifests",
+	"file_io",
+	"add_thumbnails",
+	"pdf"
+]}
 env_logger = "0.11"
 log = "0.4.8"
 lazy_static = "1.4.0"
@@ -26,4 +31,4 @@ regex = "1.5.6"
 serde = "1.0.197"
 serde_json = { version = "1.0.117", features = ["preserve_order"] }
 tempfile = "3.15.0"
-
+toml = "0.8.23"
@@ -1,19 +1,19 @@
 {
-  "active_manifest": "urn:c2pa:22daa42e-a5b6-4944-bda3-8db575c6c730:contentauth",
+  "active_manifest": "urn:c2pa:e8cfb0d0-8bd3-41db-abb9-68a8e4aa1bbf:contentauth",
   "manifests": {
-    "urn:c2pa:22daa42e-a5b6-4944-bda3-8db575c6c730:contentauth": {
+    "urn:c2pa:e8cfb0d0-8bd3-41db-abb9-68a8e4aa1bbf:contentauth": {
       "claim_generator_info": [
         {
           "name": "make_test_images",
-          "version": "0.57.0",
-          "org.cai.c2pa_rs": "0.57.0"
+          "version": "0.58.0",
+          "org.contentauth.c2pa_rs": "0.58.0"
         }
       ],
       "title": "C.jpg",
-      "instance_id": "xmp:iid:bef593e6-3517-4433-8bec-43cd996cff9b",
+      "instance_id": "xmp:iid:f31e250d-3fdf-48f4-bb10-afc1def59d80",
       "thumbnail": {
         "format": "image/jpeg",
-        "identifier": "self#jumbf=/c2pa/urn:c2pa:22daa42e-a5b6-4944-bda3-8db575c6c730:contentauth/c2pa.assertions/c2pa.thumbnail.claim"
+        "identifier": "self#jumbf=/c2pa/urn:c2pa:e8cfb0d0-8bd3-41db-abb9-68a8e4aa1bbf:contentauth/c2pa.assertions/c2pa.thumbnail.claim"
       },
       "ingredients": [],
       "assertions": [
@@ -23,87 +23,69 @@
             "actions": [
               {
                 "action": "c2pa.created",
-                "softwareAgent": "Make Test Images 0.57.0",
+                "softwareAgent": "Make Test Images 0.58.0",
                 "parameters": {
                   "name": "gradient"
                 },
                 "digitalSourceType": "http://cv.iptc.org/newscodes/digitalsourcetype/algorithmicMedia"
               }
-            ]
+            ],
+            "allActionsIncluded": true
           }
-        },
-        {
-          "label": "stds.schema-org.CreativeWork",
-          "data": {
-            "@context": "http://schema.org/",
-            "@type": "CreativeWork",
-            "author": [
-              {
-                "name": "John Doe",
-                "@type": "Person"
-              }
-            ]
-          },
-          "kind": "Json"
         }
       ],
       "signature_info": {
         "alg": "Ps256",
         "issuer": "C2PA Test Signing Cert",
         "cert_serial_number": "720724073027128164015125666832722375746636448153",
-        "time": "2025-07-15T22:31:15+00:00"
+        "time": "2025-07-28T05:55:47+00:00"
       },
-      "label": "urn:c2pa:22daa42e-a5b6-4944-bda3-8db575c6c730:contentauth"
+      "label": "urn:c2pa:e8cfb0d0-8bd3-41db-abb9-68a8e4aa1bbf:contentauth"
     }
   },
   "validation_results": {
     "activeManifest": {
       "success": [
         {
           "code": "timeStamp.validated",
-          "url": "self#jumbf=/c2pa/urn:c2pa:22daa42e-a5b6-4944-bda3-8db575c6c730:contentauth/c2pa.signature",
+          "url": "self#jumbf=/c2pa/urn:c2pa:e8cfb0d0-8bd3-41db-abb9-68a8e4aa1bbf:contentauth/c2pa.signature",
           "explanation": "timestamp message digest matched: DigiCert SHA256 RSA4096 Timestamp Responder 2025 1"
         },
         {
           "code": "claimSignature.insideValidity",
-          "url": "self#jumbf=/c2pa/urn:c2pa:22daa42e-a5b6-4944-bda3-8db575c6c730:contentauth/c2pa.signature",
+          "url": "self#jumbf=/c2pa/urn:c2pa:e8cfb0d0-8bd3-41db-abb9-68a8e4aa1bbf:contentauth/c2pa.signature",
           "explanation": "claim signature valid"
         },
         {
           "code": "claimSignature.validated",
-          "url": "self#jumbf=/c2pa/urn:c2pa:22daa42e-a5b6-4944-bda3-8db575c6c730:contentauth/c2pa.signature",
+          "url": "self#jumbf=/c2pa/urn:c2pa:e8cfb0d0-8bd3-41db-abb9-68a8e4aa1bbf:contentauth/c2pa.signature",
           "explanation": "claim signature valid"
         },
         {
           "code": "assertion.hashedURI.match",
-          "url": "self#jumbf=/c2pa/urn:c2pa:22daa42e-a5b6-4944-bda3-8db575c6c730:contentauth/c2pa.assertions/c2pa.thumbnail.claim",
+          "url": "self#jumbf=/c2pa/urn:c2pa:e8cfb0d0-8bd3-41db-abb9-68a8e4aa1bbf:contentauth/c2pa.assertions/c2pa.thumbnail.claim",
           "explanation": "hashed uri matched: self#jumbf=c2pa.assertions/c2pa.thumbnail.claim"
         },
         {
           "code": "assertion.hashedURI.match",
-          "url": "self#jumbf=/c2pa/urn:c2pa:22daa42e-a5b6-4944-bda3-8db575c6c730:contentauth/c2pa.assertions/c2pa.actions.v2",
+          "url": "self#jumbf=/c2pa/urn:c2pa:e8cfb0d0-8bd3-41db-abb9-68a8e4aa1bbf:contentauth/c2pa.assertions/c2pa.actions.v2",
           "explanation": "hashed uri matched: self#jumbf=c2pa.assertions/c2pa.actions.v2"
         },
         {
           "code": "assertion.hashedURI.match",
-          "url": "self#jumbf=/c2pa/urn:c2pa:22daa42e-a5b6-4944-bda3-8db575c6c730:contentauth/c2pa.assertions/c2pa.hash.data",
+          "url": "self#jumbf=/c2pa/urn:c2pa:e8cfb0d0-8bd3-41db-abb9-68a8e4aa1bbf:contentauth/c2pa.assertions/c2pa.hash.data",
           "explanation": "hashed uri matched: self#jumbf=c2pa.assertions/c2pa.hash.data"
         },
-        {
-          "code": "assertion.hashedURI.match",
-          "url": "self#jumbf=/c2pa/urn:c2pa:22daa42e-a5b6-4944-bda3-8db575c6c730:contentauth/c2pa.assertions/stds.schema-org.CreativeWork",
-          "explanation": "hashed uri matched: self#jumbf=c2pa.assertions/stds.schema-org.CreativeWork"
-        },
         {
           "code": "assertion.dataHash.match",
-          "url": "self#jumbf=/c2pa/urn:c2pa:22daa42e-a5b6-4944-bda3-8db575c6c730:contentauth/c2pa.assertions/c2pa.hash.data",
+          "url": "self#jumbf=/c2pa/urn:c2pa:e8cfb0d0-8bd3-41db-abb9-68a8e4aa1bbf:contentauth/c2pa.assertions/c2pa.hash.data",
           "explanation": "data hash valid"
         }
       ],
       "informational": [
         {
           "code": "timeStamp.untrusted",
-          "url": "self#jumbf=/c2pa/urn:c2pa:22daa42e-a5b6-4944-bda3-8db575c6c730:contentauth/c2pa.signature",
+          "url": "self#jumbf=/c2pa/urn:c2pa:e8cfb0d0-8bd3-41db-abb9-68a8e4aa1bbf:contentauth/c2pa.signature",
           "explanation": "timestamp cert untrusted: DigiCert SHA256 RSA4096 Timestamp Responder 2025 1"
         }
       ],
 
@@ -1,19 +1,19 @@
 {
-  "active_manifest": "urn:c2pa:4d9e9570-a2d4-496e-a1d0-5d98d39aa686:contentauth",
+  "active_manifest": "urn:c2pa:bb0da609-a5cb-4923-9e74-35540472478d:contentauth",
   "manifests": {
-    "urn:c2pa:4d9e9570-a2d4-496e-a1d0-5d98d39aa686:contentauth": {
+    "urn:c2pa:bb0da609-a5cb-4923-9e74-35540472478d:contentauth": {
       "claim_generator_info": [
         {
           "name": "make_test_images",
-          "version": "0.57.0",
-          "org.cai.c2pa_rs": "0.57.0"
+          "version": "0.58.0",
+          "org.contentauth.c2pa_rs": "0.58.0"
         }
       ],
       "title": "CA.jpg",
-      "instance_id": "xmp:iid:3cc224a9-aaf9-4d82-adf0-d677b0eeaea2",
+      "instance_id": "xmp:iid:d5032a83-ac47-40c4-a3f9-77b0d3d4b11b",
       "thumbnail": {
         "format": "image/jpeg",
-        "identifier": "self#jumbf=/c2pa/urn:c2pa:4d9e9570-a2d4-496e-a1d0-5d98d39aa686:contentauth/c2pa.assertions/c2pa.thumbnail.claim"
+        "identifier": "self#jumbf=/c2pa/urn:c2pa:bb0da609-a5cb-4923-9e74-35540472478d:contentauth/c2pa.assertions/c2pa.thumbnail.claim"
       },
       "ingredients": [
         {
@@ -39,11 +39,8 @@
                   "ingredients": [
                     {
                       "url": "self#jumbf=c2pa.assertions/c2pa.ingredient.v3",
-                      "hash": "IopH69XyF+OZm13aAafpzXFZap0VOazjg9XhJn1AC98="
+                      "hash": "Q5NDuiDFY1u6xbFURXm9lCvn18CK8C5AuxFyGQ1Mw7U="
                     }
-                  ],
-                  "org.cai.ingredientIds": [
-                    "xmp.iid:813ee422-9736-4cdc-9be6-4e35ed8e41cb"
                   ]
                 }
               },
@@ -53,96 +50,78 @@
                   "name": "brightnesscontrast"
                 }
               }
-            ]
+            ],
+            "allActionsIncluded": true
           }
-        },
-        {
-          "label": "stds.schema-org.CreativeWork",
-          "data": {
-            "@context": "http://schema.org/",
-            "@type": "CreativeWork",
-            "author": [
-              {
-                "name": "John Doe",
-                "@type": "Person"
-              }
-            ]
-          },
-          "kind": "Json"
         }
       ],
       "signature_info": {
         "alg": "Ps256",
         "issuer": "C2PA Test Signing Cert",
         "cert_serial_number": "720724073027128164015125666832722375746636448153",
-        "time": "2025-07-15T22:31:15+00:00"
+        "time": "2025-07-28T05:55:47+00:00"
       },
-      "label": "urn:c2pa:4d9e9570-a2d4-496e-a1d0-5d98d39aa686:contentauth"
+      "label": "urn:c2pa:bb0da609-a5cb-4923-9e74-35540472478d:contentauth"
     }
   },
   "validation_results": {
     "activeManifest": {
       "success": [
         {
           "code": "timeStamp.validated",
-          "url": "self#jumbf=/c2pa/urn:c2pa:4d9e9570-a2d4-496e-a1d0-5d98d39aa686:contentauth/c2pa.signature",
+          "url": "self#jumbf=/c2pa/urn:c2pa:bb0da609-a5cb-4923-9e74-35540472478d:contentauth/c2pa.signature",
           "explanation": "timestamp message digest matched: DigiCert SHA256 RSA4096 Timestamp Responder 2025 1"
         },
         {
           "code": "claimSignature.insideValidity",
-          "url": "self#jumbf=/c2pa/urn:c2pa:4d9e9570-a2d4-496e-a1d0-5d98d39aa686:contentauth/c2pa.signature",
+          "url": "self#jumbf=/c2pa/urn:c2pa:bb0da609-a5cb-4923-9e74-35540472478d:contentauth/c2pa.signature",
           "explanation": "claim signature valid"
         },
         {
           "code": "claimSignature.validated",
-          "url": "self#jumbf=/c2pa/urn:c2pa:4d9e9570-a2d4-496e-a1d0-5d98d39aa686:contentauth/c2pa.signature",
+          "url": "self#jumbf=/c2pa/urn:c2pa:bb0da609-a5cb-4923-9e74-35540472478d:contentauth/c2pa.signature",
           "explanation": "claim signature valid"
         },
         {
           "code": "assertion.hashedURI.match",
-          "url": "self#jumbf=/c2pa/urn:c2pa:4d9e9570-a2d4-496e-a1d0-5d98d39aa686:contentauth/c2pa.assertions/c2pa.thumbnail.claim",
+          "url": "self#jumbf=/c2pa/urn:c2pa:bb0da609-a5cb-4923-9e74-35540472478d:contentauth/c2pa.assertions/c2pa.thumbnail.claim",
           "explanation": "hashed uri matched: self#jumbf=c2pa.assertions/c2pa.thumbnail.claim"
         },
         {
           "code": "assertion.hashedURI.match",
-          "url": "self#jumbf=/c2pa/urn:c2pa:4d9e9570-a2d4-496e-a1d0-5d98d39aa686:contentauth/c2pa.assertions/c2pa.thumbnail.ingredient",
+          "url": "self#jumbf=/c2pa/urn:c2pa:bb0da609-a5cb-4923-9e74-35540472478d:contentauth/c2pa.assertions/c2pa.thumbnail.ingredient",
           "explanation": "hashed uri matched: self#jumbf=c2pa.assertions/c2pa.thumbnail.ingredient"
         },
         {
           "code": "assertion.hashedURI.match",
-          "url": "self#jumbf=/c2pa/urn:c2pa:4d9e9570-a2d4-496e-a1d0-5d98d39aa686:contentauth/c2pa.assertions/c2pa.ingredient.v3",
+          "url": "self#jumbf=/c2pa/urn:c2pa:bb0da609-a5cb-4923-9e74-35540472478d:contentauth/c2pa.assertions/c2pa.ingredient.v3",
           "explanation": "hashed uri matched: self#jumbf=c2pa.assertions/c2pa.ingredient.v3"
         },
         {
           "code": "assertion.hashedURI.match",
-          "url": "self#jumbf=/c2pa/urn:c2pa:4d9e9570-a2d4-496e-a1d0-5d98d39aa686:contentauth/c2pa.assertions/c2pa.actions.v2",
+          "url": "self#jumbf=/c2pa/urn:c2pa:bb0da609-a5cb-4923-9e74-35540472478d:contentauth/c2pa.assertions/c2pa.actions.v2",
           "explanation": "hashed uri matched: self#jumbf=c2pa.assertions/c2pa.actions.v2"
         },
         {
           "code": "assertion.hashedURI.match",
-          "url": "self#jumbf=/c2pa/urn:c2pa:4d9e9570-a2d4-496e-a1d0-5d98d39aa686:contentauth/c2pa.assertions/c2pa.hash.data",
+          "url": "self#jumbf=/c2pa/urn:c2pa:bb0da609-a5cb-4923-9e74-35540472478d:contentauth/c2pa.assertions/c2pa.hash.data",
           "explanation": "hashed uri matched: self#jumbf=c2pa.assertions/c2pa.hash.data"
         },
-        {
-          "code": "assertion.hashedURI.match",
-          "url": "self#jumbf=/c2pa/urn:c2pa:4d9e9570-a2d4-496e-a1d0-5d98d39aa686:contentauth/c2pa.assertions/stds.schema-org.CreativeWork",
-          "explanation": "hashed uri matched: self#jumbf=c2pa.assertions/stds.schema-org.CreativeWork"
-        },
         {
           "code": "assertion.dataHash.match",
-          "url": "self#jumbf=/c2pa/urn:c2pa:4d9e9570-a2d4-496e-a1d0-5d98d39aa686:contentauth/c2pa.assertions/c2pa.hash.data",
+          "url": "self#jumbf=/c2pa/urn:c2pa:bb0da609-a5cb-4923-9e74-35540472478d:contentauth/c2pa.assertions/c2pa.hash.data",
           "explanation": "data hash valid"
         }
       ],
       "informational": [
         {
           "code": "ingredient.unknownProvenance",
-          "url": "self#jumbf=/c2pa/urn:c2pa:4d9e9570-a2d4-496e-a1d0-5d98d39aa686:contentauth/c2pa.assertions/c2pa.ingredient.v3",
+          "url": "self#jumbf=/c2pa/urn:c2pa:bb0da609-a5cb-4923-9e74-35540472478d:contentauth/c2pa.assertions/c2pa.ingredient.v3",
           "explanation": "A.jpg: ingredient does not have provenance"
         },
         {
           "code": "timeStamp.untrusted",
-          "url": "self#jumbf=/c2pa/urn:c2pa:4d9e9570-a2d4-496e-a1d0-5d98d39aa686:contentauth/c2pa.signature",
+          "url": "self#jumbf=/c2pa/urn:c2pa:bb0da609-a5cb-4923-9e74-35540472478d:contentauth/c2pa.signature",
           "explanation": "timestamp cert untrusted: DigiCert SHA256 RSA4096 Timestamp Responder 2025 1"
         }
       ],