Beta

Meet Origo

The new standard for digital proof

Sign, verify, and audit.
All without intermediaries. Real trust, cryptographically proven.

From standalone certificates to blockchain wallets, Origo bridges traditional compliance and decentralized identity — making document authenticity verifiable in seconds.

Get Started Free See How It Works

Trusted by legal, web3, and enterprise teams.

Decentralized Trust

Resolve domain public keys from the Xahau ledger and compare signature certificates to authoritative keys. No middlemen, no walled gardens.

Privacy-First

We never store your documents. Send only the digest and signature blob, or upload a PDF for secure browser extraction.

Actionable Diagnostics & Auditability

Get detailed, actionable verification reports — parse errors, certificate fingerprints and extraction logs — so you can fix issues and keep auditable records.

How Origo Works

Origo turns every signature into a source of truth.Sign with your existing certificate or your Xaman Wallet — Origo verifies it instantly against decentralized domains, delivering verifiable, audit-ready trust. No uploads. No lock-in. Just proof.

Sign your way:Use your traditional PFX/PKCS#7 certificate or sign natively with your Xaman Wallet through Xahau Docproof Origo. Both paths lead to verifiable authenticity.
Decentralized lookup:Origo retrieves domain-linked identities and public keys directly from the XRPL ledger (/.well-known/xahau.toml) — removing intermediaries and ensuring genuine trust.
Instant verification:Origo extracts the signature data, matches the public key, and returns a tamper-proof verdict:VALID or diagnostic insights in seconds.

Standalone or Wallet-based:Origo proves both origin and integrity of your documents — entirely cryptographically.Supports full PDF byte-range validation using PKCS#7 signature and digest data.

“The work I am doing is my way of giving back to the accounting community. Small businesses can now operate and make payments with confidence.Xaman Wallet, FrontAccounting, and Origo make this possible.”

Leslie Proud

AuditsLtd — iaudits.com.au

Who is Origo for?

⚖️Legal & ComplianceProtect every agreement with verifiable cryptographic signatures — compliant, tamper-proof, and fully auditable.

📄Workflows & AuditsAutomate document flows, validate authenticity instantly, and keep a provable audit trail across teams.

🌐Decentralized OrgsEmpower DAOs and Web3 projects to issue, sign, and verify documents using blockchain-based trust.

🔗Modern TeamsEvolve from static PFX signatures to wallet-based signing — simpler, safer, and future-ready.

Associate a domain to your XRPL account (quick tx)

Origo can read the Domain field from XRPL account root. Use this quick flow to set the domain for your account using Xaman Wallet (AccountSet Domain).

Domain (e.g. example.com)Your XRPL account (rAddress)

If you have Xaman Wallet installed and connected, the page will attempt to request a signature/submission from it. If that fails, you can copy the prepared transaction and sign/submit it manually using your wallet or CLI.

Why set Domain on XRPL?

Setting the Domain field on your XRPL account lets Origo (and other services) fetch https://<your-domain>/.well-known/xahau.toml to discover your DOCPROOF entries and public keys. This decentralizes trust and allows verifiers to confirm the origin of documents.

Security notes

AccountSet transactions change account fields — sign them only with your wallet.
Domain is stored on ledger as hex of ASCII; Origo converts and fetches /.well-known/xahau.toml.
Double-check domain ownership before submitting tx on mainnet.

How to publish your xahau.toml (.well-known/xahau.toml)

Add a /.well-known/xahau.toml file on your domain with one or more [[DOCPROOF]] entries to declare which public keys are authoritative for document proofs.

Example xahau.toml (copy below):

[[DOCPROOF]]
id = "429f076e-0b1c-412c-b1b0-c678cc6cb173" # UUIDv4 - https://www.uuidgenerator.net/version4
# UUIDv4 unique identifier for this DOCPROOF entry.
# Useful when an organization has multiple pubkeys for the same wallet,
# enabling verifiers to distinguish between them without creating multiple wallets.
address = "rNqe9wrMJM3D6hwcTtNmYTtfcjbHsHRDSg" # rAddress of the Xahau Account
desc = "Xahau Docproof" # Account description
pubkey = """
-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiGxxxxxxxMFNVCSTJz+xGW3PlPHayRRGTgps
-----END PUBLIC KEY-----
"""

Toml docs (example)

Important: For standalone model, make sure the pubkey contains the public key (PEM) you want verifiers to match. Origo will attempt to parse PEM and DER forms from the signature blob to compare public key bytes.

About id: Each [[DOCPROOF]] entry has an id field (UUIDv4) that uniquely identifies it. This lets organizations use multiple public keys with a single wallet, making verification easier without managing multiple accounts.

Turn signatures into verifiable trust.

Origo lets you prove where a document came from — and that it hasn’t changed. Sign, verify, and audit with blockchain-grade assurance, whether you’re using a wallet or your own certificate.

Start with Xaman Wallet Publish your xahau.toml