AI Metadata RemoverAI Metadata RemoverFree · 100% local · lossless

What Are Content Credentials? A Plain-English Guide to C2PA

March 31, 2026 · 8 min read

If you've saved an image out of Photoshop lately, or generated one with ChatGPT, or shot a photo on one of the newer Leica cameras, there's a decent chance it left the building carrying a little invisible passport. That passport is called a Content Credential, and the standard behind it is C2PA. You may have seen the badge it produces: a small "CR" pin in the corner of an image on sites that support it — LinkedIn shows one, so does Adobe's own ecosystem, and more platforms are adding it every quarter.

Most explanations of C2PA are written for engineers. We've published one of those ourselves — if you want the byte-level details of manifests, claims and hard bindings, our engineering deep-dive on C2PA provenance covers it. This article is the other thing: a plain-English guide for people who just want to know what that CR pin means, what it says about them, and what to do about it before sharing a file.

The short version

A Content Credential is a signed, tamper-evident history that travels inside a media file. Think of it as a nutrition label plus a wax seal. The label part says things like "created with Adobe Firefly on this date, then opened in Photoshop, colors adjusted, exported." The wax seal part is a cryptographic signature that proves the label hasn't been forged or edited after the fact. If anyone changes so much as one pixel of the image without updating the credential, verification tools will flag the mismatch.

That's genuinely useful for some things. A news photographer can prove a photo came straight off the camera. A platform can label AI-generated images automatically instead of guessing. And with the EU AI Act's transparency obligations under Article 50 kicking in on August 2, 2026, machine-readable "this was made by AI" markers are about to become a legal requirement for a lot of companies, not just a nice-to-have.

But here's the thing most consumer coverage skips: the credential doesn't just describe the image. It describes you — your tools, your workflow, your timeline, and sometimes your name.

Who's behind C2PA

C2PA stands for the Coalition for Content Provenance and Authenticity. It was formed in 2021 when two earlier efforts merged: Adobe's Content Authenticity Initiative and Project Origin, a media-provenance project driven by Microsoft and the BBC. Today the coalition's membership reads like a who's-who of tech and media: Adobe, Google, Microsoft, OpenAI, Meta, the BBC, Sony, Intel, Arm and camera makers like Nikon and Leica, among others. The official spec and membership list live at c2pa.org.

"Content Credentials" is the consumer-facing brand name for what the spec calls a manifest. Adobe pushed the name, and the CR pin, as the friendly face of the standard. When OpenAI started embedding C2PA metadata in DALL·E images in early 2024, and when Meta and Google announced support for reading it, the standard went from industry curiosity to something that will quietly touch most media files you interact with.

None of these companies are villains here, to be clear. Provenance is a reasonable answer to the deepfake problem. But a standard designed to authenticate journalism works exactly the same way when it's attached to your personal photos, and that's where you should pay attention.

What a manifest actually records

Inside the file, a C2PA manifest is a structured bundle of "assertions" — individual statements about the file — plus a signature from whoever made the claim. The exact contents depend on the tool that wrote it, but in practice the assertions fall into a few buckets: what created the file, what was done to it, what went into it, and who signed it.

Manifest fieldWhat it can reveal about you
Claim generator (tool)The exact app and version you used — "Adobe Photoshop 26.x", "ChatGPT / DALL·E", a phone camera app. Reveals whether AI was involved at all.
Actions (edit history)A step-by-step log: opened, cropped, color-adjusted, generative fill used, exported. Handy for you; also a record of exactly how much retouching happened.
TimestampsWhen the file was created and when each edit happened — which can contradict whatever story accompanies the image ("just took this!").
IngredientsReferences to source files that were combined into this one. A composite can carry traces of every image that went into it.
Signer identityThe certificate of whoever signed the claim. Usually that's the software vendor, but if you've enabled attribution in Adobe's tools, your name or account identity can be attached.
Capture device infoOn supported cameras and phones, the hardware that took the shot — same category of information as EXIF, but signed.

Read that table again from the perspective of someone you'd rather not share your workflow with. A client who paid for "original photography" can see the generative-fill action. A recruiter can see the file was made three years ago, not last week. A stranger can see which apps live on your machine. It's all mundane data, individually — but it's mundane data about you, signed and notarized, riding along inside a JPEG you thought was just a picture.

Content Credentials were designed to answer "is this image authentic?" — but every answer to that question is also an answer to "what exactly did this person do, with what, and when?"

How to inspect a file for Content Credentials

The good news: checking is easy, and you should get in the habit of doing it before you post anything that's been near an Adobe product or an AI generator.

  1. The official inspector at contentcredentials.org/verify lets you drop a file in and see the full manifest — tool, actions, signature, the lot. It's the same view platforms use to draw the CR pin.
  2. Our free photo metadata viewer shows you everything embedded in an image — EXIF, XMP and C2PA segments — without uploading the file anywhere, which matters if the image itself is sensitive.
  3. In Adobe apps, look for the Content Credentials panel; it shows what will be attached at export and, crucially, whether your identity is set to be included.
  4. For the command-line crowd, the open-source c2patool dumps manifests as JSON. Overkill for most people, but it exists.

One thing I'd flag from my own testing: files can carry credentials even when no CR pin shows up, because most sites simply don't render the badge yet. Absence of the pin tells you nothing. Only inspecting the file does.

It's also worth knowing what a valid credential does and doesn't prove. A green checkmark in the inspector means the manifest hasn't been tampered with since signing — it does not mean the image is "true." Someone can photograph a staged scene with a provenance-enabled camera and get a perfectly valid credential on a misleading picture. Conversely, a missing credential proves nothing about authenticity either, since the overwhelming majority of images have never had one. C2PA verifies the paper trail, not the reality behind it, and keeping that distinction straight will put you ahead of most of the coverage you'll read.

Why you might want to remove them — and how

Let's be fair to both sides. If you're a journalist, an artist fighting misattribution, or a brand that wants its imagery verifiable, keep your credentials. That's what they're for. But there are plenty of legitimate reasons to strip them before sharing:

  • You don't want your edit history visible — how much retouching you did is nobody's business.
  • The signer identity or tool fingerprint links the image back to your accounts or devices.
  • Timestamps in the manifest contradict the context you're sharing the image in, and you'd rather not have that conversation.
  • You're posting anonymously and want the file to carry as little linkable data as possible, full stop.

How to actually do it? The manifest lives in the file's metadata sections, alongside EXIF and XMP, so any tool that genuinely rewrites the file without those sections will remove it. Our AI photo metadata remover does exactly this in your browser — the image never leaves your device, and the output is a clean file with the C2PA manifest, EXIF and XMP data gone. Re-check the result in the verify tool afterward if you want proof; the credential should simply read as "not found."

A few honest caveats. First, screenshots also drop credentials, but they recompress the image and cost you quality — a proper metadata strip doesn't touch the pixels. Second, some platforms already strip metadata on upload (WhatsApp and Instagram do, as of mid-2026), but relying on the the platform means trusting behavior that changes without notice — Telegram, for one, keeps everything when you send a file as a document. Third, and this is the part most guides gloss over: C2PA has a concept of "durable" credentials, where a watermark or fingerprint can let a platform re-attach provenance from a cloud database even after the metadata is removed. That's not widely deployed for ordinary user files yet, but the direction of travel is clear. Removing the manifest removes what's embedded in the file, which is the part you control.

The habit worth building

Content Credentials aren't going away — with regulators in Europe now requiring AI transparency marking, they're about to be everywhere. The sensible posture isn't panic and it isn't ignorance; it's a ten-second check. Before an image goes anywhere public, inspect it. If the manifest tells a story you're happy to publish under your name, leave it. If it doesn't, strip it and move on. The CR pin is a fine thing to see on a news photo. On your own snapshot, it should be there because you chose it — not because Photoshop decided for you.

AI Metadata Remover

Strip Content Credentials before you share

Remove C2PA manifests, EXIF and XMP from your images right in your browser — nothing gets uploaded.

Open the photo cleaner