HumanosHumanos
Start
Get API keys
Create production credentials
Quickstart
5-minute integration
Dashboard
Manage mandates & receipts
API reference
All endpoints & types
VIA
Open verification protocol
SDKs
TypeScript
npm install humanos
Python
pip install humanos
C#
dotnet add Humanos
Orchestration
n8nComing soon
Drop verify() into low-code workflows
ZapierComing soon
Trigger-based agent automation
SkillsComing soon
Reusable verify() modules for LLM agents
Core
humanos.verify()
Verify before execution
Requesting approvals
Capture approval at runtime
Revocation
Invalidate credentials
Webhooks
Event-driven integration
Case study·Humanos × Ralio·ralio.agents.v3·v1 · anchored 2026-05-19

Ralio’s agents execute transactions on behalf of businesses.
Humanos makes those transactions independently verifiable.

Ralio runs payment agents that execute transactions (spend, payroll, treasury) on behalf of business customers, under guardrails, identity, and audit on every move. Humanos sits at the merchant boundary and verifies every transaction before it executes.

Domain
Agentic B2B paymentsSpend · payroll · treasury
Surface area
Bank accounts · Cards · StablecoinsAcross rails
Integration
humanos.verify()One call · at the merchant boundary
Site
ralio.co ↗Agent runtime · 2026
§ 01 · About the customer

Ralio is the trust layer for agentic B2B payments, giving businesses the guardrails, identity, and audit their AI agents need before money moves.

Ralio lets business agents safely execute transactions — spend, payroll, treasury — on behalf of business customers.

Humanos sits at the merchant boundary and verifies every transaction before it executes — identity, scope, counterparty, amount, validity.

Ralio
Integrated
Domain
Agentic B2B payments
Surface area
Bank accounts · Cards · Stablecoins
Runtime
ralio.agents.v3
Integration
humanos.verify() · one call
Site
ralio.co ↗
Anchored
2026-05-19 · v1
§ 02 · Problem

Transactions cross boundaries
bank channels can’t span.

Ralio today operates inside the customer’s own bank API. Every payment flows through that customer-owned channel, so Ralio’s guardrails are enough — no external system has to recognise or authenticate the agent itself. The moment the agent has to transact outside the bank API — hosted checkouts, B2B marketplaces, acquirer networks — the same approach no longer applies.

What’s happening

The agent is trusted inside the channel, unknown outside it.

Ralio governs the agent inside the customer-owned bank API channel by design. The moment the same agent transacts at a venue the customer doesn’t own — a marketplace checkout, an acquirer, a third-party processor — the merchant side has no credential to verify, no registry to consult, no way to confirm the action is authorized.

bank API channel·external venuesheld back
What it costs

Reach stops at the channel boundary.

Inside the channel, Ralio’s guardrails, identity, and audit are sufficient. Outside it, agentic payments stay off the table. Without a shared credential bridging Ralio to merchants, marketplace checkouts, acquirers, and hosted checkouts remain unreachable, and the customer’s agentic payment footprint can’t grow past the bank API.

no shared credential·“is this agent allowed here?”
Trust stops at the channel boundary. Payments don’t.
§ 02 · close
§ 03 · Solution

Issued at the source.
Verified at the merchant.

Humanos issues a certificate scoped to the purchase — counterparty, amount ceiling, expiry — at Ralio’s request and authorized by the customer. The certificate is cryptographically signed and bound to the agent’s identity, then verified by the merchant in real time before settlement.

verification.capture · at the merchant boundary
2026-05-19 14:02:18.412 UTC
Merchant
techsupply.eu
DID:web:techsupply.eu
Transaction
€ 23,840.00
12 × MacBook Pro 14"€ 21,588.00
12 × USB-C dock€ 1,548.00
Shipping & VAT€ 704.00
Total€ 23,840.00
x-humanos-mandate · 0xA13F…84e9
Initiated by · Ralio procurement agent
on behalf of: Finance Lead, ACME GmbH
humanos.verify() · live capture
82 ms
identityprincipal verified
12 ms
scopeprocurement · hardware
24 ms
counterpartytechsupply.eu · approved
38 ms
amountwithin € 24,000.00 ceiling
58 ms
validitymandate active until 2026-06-19
72 ms
Authorized · proof emitted
proof:0xA13F…84e9 · attached to settlement
✓ Authorized

Merchant proceeds.

Within mandate, within constraints, within validity. The merchant settles. A Proof is attached to the transaction — portable, verifiable by any party.

✕ Not authorized

Recover — then continue.

Out of scope, expired, or revoked. Humanos requests step-up approval in real time (SMS, API), updates the mandate, and resumes once authorization is valid.

The merchant verifies the mandate directly through Humanos.
§ 04 · Implementation

How Ralio implemented it.

Six stages in chronological order. The animation on the right is the exact flow from our product page — adapted to Ralio’s €23,840.00 procurement order, settled at techsupply.eu.

01
§ 01 · Configure

Agent configuration.

The company’s finance lead creates a procurement agent on Ralio, connects it to the company’s bank, and defines its tasks and transaction limits. Ralio’s guardrails govern every action the agent takes inside that channel.

Agentralio.procurement.agent
Taskprocurement · hardware · IT supplies
Limitstransaction caps · approval rules
Channelcustomer bank API · open banking
02
§ 02 · Issue

Define mandate.

Finance lead authorizes scope, counterparties, ceiling, and validity. Humanos issues a machine-verifiable mandate — signed once, reusable across every merchant that verifies.

ApproverFinance Lead · ACME GmbH
Counterpartytechsupply.eu
Ceiling€ 24,000.00
Valid until2026-06-19
03
§ 03 · Prepare

Agent prepares action.

Triggered by the procurement request, Ralio’s agent calls Humanos to receive the certificate. Humanos issues it scoped to the mandate, signs it cryptographically, and binds it to the agent’s identity. The agent assembles the order at techsupply.eu and attaches the certificate to its outbound request as x-humanos-mandate.

Requested byralio.procurement.agent
Issued byHumanos · signed
Order12 × MacBook Pro 14" · 12 × USB-C dock
Vendortechsupply.eu
Total€ 23,840.00
Attached asx-humanos-mandate
04
§ 04 · Verify

Merchant verifies.

At checkout, the merchant calls humanos.verify() directly against the certificate. Identity, scope, counterparty, amount, and validity are checked in 82 ms.

Callertechsupply.eu (DID:web)
Identityverified · 12 ms
Amount€ 23,840 ≤ € 24,000 · 58 ms
Latency82 ms total
05
§ 05 · Settle

Agent executes the payment.

Authorized → Ralio’s agent executes the payment through the customer’s bank API channel and money moves. Not authorized → the merchant declines, and Humanos blocks at the boundary and triggers real-time step-up authorization.

Executorralio.procurement.agent
Railcustomer bank API channel
Authorized✓ € 23,840.00 · settled
Not authorized✗ merchant declines · Humanos blocks · step-up
06
§ 06 · Prove

Dual audit trail.

Both Ralio and Humanos hold verifiable records. Ralio’s audit records every agent tool-call decision; Humanos’s registry records the certificate verification. Together they form a complete chain of authority from finance lead to merchant, independently verifiable forever.

Ralioagent ID and tool-call decisions
Humanoscertificate verifications
VerifiersAuditor · Processor · Acquirer
Resultindependently verifiable · forever
Live · humanos.verify() · Ralio × techsupply.eu
§ 01 · Configure
02 · Issue · mandate signed by Finance Lead
mandatesigned
subject: "ralio.procurement.agent",
principal: "finance.lead@acme.gmbh",
action: "purchase.execute",
scope: ["procurement", "hardware"],
counterparty: "techsupply.eu",
amount_max: "€ 24,000.00",
valid_until: "2026-06-19"
03·04·05 · Prepare → Verify → Settle
  1. A1Purchase 12 × MacBook Pro 14"authorizedmissingrequesting…approvedout_of_scope
    at techsupply.eu · € 21,588.00
  2. A2Add 12 × USB-C dock + shippingauthorizedmissingrequesting…approvedout_of_scope
    at techsupply.eu · € 2,252.00
  3. A3Procure € 50,000 server rackauthorizedmissingrequesting…approvedout_of_scope
    at racks-direct.de · exceeds € 24,000 ceiling
  4. A4Add new vendor: AcmeCloud (SaaS)authorizedmissingrequesting…approvedout_of_scope
    step-up SMS · resolves · resumes
verify() — called by the merchant, not by Ralio
await humanos.verify({ subject, action, amount, counterparty, mandate }) // 82 ms · deterministic
settled · € 23,840.00 · via customer bank API channel
0xA13F…84e9
06 · Prove · dual audit trail, independently verifiable
proof.jsonsigned
{
  "who_approved": "Finance Lead · ACME GmbH",
  "merchant": "techsupply.eu",
  "action": "purchase.execute",
  "amount": "€ 23,840.00",
  "scope": ["procurement", "hardware"],
  "mandate": "0xA13F…84e9",
  "validity": "≤ 2026-06-19",
  "timestamp": "2026-05-19T14:02:18.412Z",
  "signature": "0xA13F…84e9"
}
AuditorProcessorAcquirerverify(proof)true
✓ proof attached · independently verifiable · forever
§ 05 · Outcome

What you get
the moment it’s wired in.

01 · Verify

Every transaction verified before execution.

Nothing settles on assumption. The verify call is non-optional and inline at the merchant boundary, alongside Ralio’s controls on the agent side.

02 · Portable

Authorization travels with the action.

Issue once, verify anywhere. The same mandate works across merchants, processors, networks, and acquirers.

03 · Independent

External counterparties verify directly.

Merchants check authority against Humanos directly. No bilateral relationship with the agent’s operator is required.

04 · Audit

Independent audit trail at the merchant boundary.

Each transaction emits a verifiable record attached to the settlement. Auditors query Humanos directly, with no internal log access required.

05 · Update

Change rules without code changes.

Issue a new mandate. Revoke the old one. Effective immediately, everywhere a system verifies.

06 · Recover

Recover missing authorization in real time.

Out-of-scope action? Humanos collects approval (SMS, API, KYC) and resumes execution once the mandate is updated.

Agents transact safely in the open economy — within provable, externally verifiable boundaries.
§ 06 · System flow

Agent → verify() →
execute → prove.

Live · 25s loop · verify → recover → continue → prove·humanos.verify()
Agentprepares actionverify()humanos.verify(...)181ms · deterministicMandatesubject · scope · limitsAllowwithin scopeNot authrecoverUserapprove · KYC · SMSExecutevenue / railProofreceipt · anchoredMerchantProcessorMarketplace00 · IDLE01 · Agent prepares02 · verify() called03 · Out of scope04 · Request approval05 · Mandate updated06 · Re-verify · auth07 · Execute08 · Proof emitted
§ 07 · Build vs Humanos

Authorization doesn’t scale
as an internal system.

Build it yourself

Internal authorization

With Humanos

Shared authorization layer

Trust stays inside the customer-owned channel.
Authorization is independently verifiable beyond the channel.
External merchants have no shared way to verify the agent.
Merchants verify the mandate directly against Humanos.
Authorization is tied to the agent's home environment.
Authorization is a portable, machine-verifiable certificate.
Each party holds its own audit trail in isolation.
Verifiable record attached to every settlement, portable forever.
Every new external counterparty requires bilateral setup.
One verify() call covers every counterparty.
Permission changes coordinate party-by-party.
Revoke the mandate; effective everywhere on next verify.
§ 08 · Network effect

Counterparties verify independently.

External parties can check authority directly through Humanos, with no bilateral relationship required.

Humanos
verify()
Ralio agentcaller
Merchanttechsupply.eu
Marketplaceaggregator
Processorcard · ACH
Acquirernetwork

Mandates work across systems.

Issue once. Verify anywhere — merchants, processors, networks, acquirers.

Counterparties verify independently.

External parties check authority directly, without trusting the agent’s runtime.

Integrations reuse the same standard.

No new logic per venue. The integration is the verify() call.

Each participant strengthens the standard.

The more systems verify against Humanos, the more valuable each mandate becomes.

§ 09 · Use cases

Anywhere agents transact with external counterparties.

01

B2B procurement

Execute purchases on external B2B marketplaces — hardware, software, services.

Verify before execution
purchaserenewalsubscription
02

Marketplaces

Buy on marketplaces and aggregators with authorization the marketplace itself can verify before clearing the order.

Verify before execution
checkoutbidsettle
03

Payment processors

Card networks and acquirers verify agent-initiated charges against a human mandate before authorizing the transaction.

Verify before execution
chargecapturerefund
04

Cross-org workflows

Agents acting across partner systems, verified independently by every system they touch.

Verify before execution
delegateattestaudit
§ 10 · Model

Issue → Verify → Collect → Prove.

I
01 · Issue

Mandate.

Human authorizes scope. Humanos issues a machine-verifiable mandate, reusable across every system that verifies.

V
02 · Verify

Check.

Any external system runs humanos.verify(). Deterministic yes / no.

C
03 · Collect

Approval.

Out of scope? Request step-up authorization from the human principal in real time — API, SMS, or email.

P
04 · Prove

Receipt.

Cryptographic Proof per action. Auditable forever. Verifiable by anyone.

§ 11 · Category definition

Humanos operates at the moment an agent transacts in the open economy.

At that moment, authorization must be verified, the decision must be deterministic, and the outcome must be provable. Everything else follows.

Portable

Authorization moves with the action.

Across organizations, marketplaces, processors, and networks.

Independently verifiable

External counterparties check authority directly.

No bilateral relationship with the agent operator required.

Provable

Every transaction carries a portable receipt.

Anyone can verify it. Forever.

Authorization stays local to each system.
Authorization becomes network infrastructure.