Identity for AI agents.

Autonomous agents need verifiable identity to operate in the real world. Register your agent, get a cryptographic credential, prove who it is to any service.

Register an agent How it works
0% of agent frameworks provide per-agent cryptographic identity
93% of agent deployments rely on shared API keys
68% of organizations can't distinguish agent from human actions

How it works

1

Register

Register your agent and the operator behind it. Your $1 goes directly to funding open identity research.

2

Receive

Get a signed credential with your agent's DID, capabilities, and operator binding. Post-quantum signed (ML-DSA-65).

3

Present

Your agent carries the credential and presents it to services. Every credential traces back to a responsible party.

4

Verify

Services check the credential using @aethyrai/ssi-verify. No API calls, no account — just math running locally.

For service providers

One line to verify an agent's identity.

npm install @aethyrai/ssi-verify
import { verifyCredential, AETHYR_ISSUER_PUBLIC_KEY } from '@aethyrai/ssi-verify';

const result = verifyCredential(credential, AETHYR_ISSUER_PUBLIC_KEY);
if (!result.valid) {
  // reject the agent
}

No network calls. No Aethyr account. Fully offline verification.

API & CLI

Register and manage agents from your terminal or CI pipeline. No web form required.

Register an agent

curl -X POST https://registry.aethyr.cloud/v1/register \
  -H "Content-Type: application/json" \
  -d '{
    "agentName": "my-agent",
    "operatorName": "Jane Smith",
    "operatorEmail": "jane@example.com",
    "framework": "langchain",
    "tier": "basic",
    "capabilities": ["web-search", "code-gen"],
    "namespace": "agent"
  }'

Returns a Stripe checkout URL. Complete payment to receive your credential via email.

Check agent status

curl https://registry.aethyr.cloud/v1/status/did:aethyr:agent:abc123

Retrieve credential

curl https://registry.aethyr.cloud/v1/credentials/REGISTRATION_ID

Revoke credential

curl -X POST https://registry.aethyr.cloud/v1/revoke \
  -H "Content-Type: application/json" \
  -d '{
    "credentialId": "REGISTRATION_ID",
    "reason": "Decommissioned",
    "apiKey": "YOUR_API_KEY"
  }'

Verify domain (Verified/Attested tiers)

# 1. Request a verification token
curl -X POST https://registry.aethyr.cloud/v1/verify-domain/initiate \
  -H "Content-Type: application/json" \
  -d '{
    "registrationId": "REGISTRATION_ID",
    "domain": "acme.com",
    "apiKey": "YOUR_API_KEY"
  }'

# 2. Add the DNS TXT record shown in the response
#    _aethyr-verify.acme.com → aethyr-verify=TOKEN

# 3. Confirm verification
curl -X POST https://registry.aethyr.cloud/v1/verify-domain/check \
  -H "Content-Type: application/json" \
  -d '{
    "registrationId": "REGISTRATION_ID",
    "apiKey": "YOUR_API_KEY"
  }'

Issuer DID document

curl https://registry.aethyr.cloud/.well-known/did.json

Pricing

Basic

$1 one-time — supports the research
  • Agent DID + signed credential
  • 1-year validity
  • Operator-initiated revocation
  • Post-quantum signature (ML-DSA-65)
Register

Verified

$10 /month
  • Everything in Basic
  • Organization verification
  • DNS TXT / GitHub org proof
  • Higher rate limits
Register

Attested

$50 /month
  • Everything in Verified
  • Hardware attestation (TPM/TEE)
  • Runtime integrity proof
  • Highest trust level
Register

Standards

W3C Verifiable Credentials 2.0 Credential format
W3C Decentralized Identifiers Agent identity
NIST FIPS 204 (ML-DSA-65) Post-quantum signatures