Mandate governance evidence pack
================================

Tenant:       c09473b8-425b-46ef-9294-7f30ff453e28
Window:       2026-07-06T16:52:00.0000000+00:00 .. 2026-07-06T17:09:11.0000000+00:00
Generated at: 2026-07-06T17:07:11.8912277+00:00
Signing key:  SHA-256 710c91b6581ec7ac5e9e07d4d6fec685fbf4a4e16e03cef8dafbdb960153ba2e

SCOPE: In-path evidence only. This pack covers the decisions and policy changes that
passed through Mandate for the selected window. It is NOT an inventory of all AI use in
your organization.

Re-verify offline: each file's SHA-256 is listed in manifest.json, and the manifest carries
an Ed25519 signature over that hash list (plus the pack identity, the export window, and the
truncated / checkpointsTruncated completeness flags). Recompute the hashes and verify the signature with
the embedded public key — confirm its SHA-256 fingerprint matches the one above and the one
on the checkpoints you already trust — no network access required. Checkpoints under
checkpoints/ verify independently against the same audit chain.
