Measured Origin · a Rootz Corp white paper · v2 draft · 12 Jul 2026
An open, agent-verifiable data supply chain for American food — from field to strip steak.
Executive summary
To label beef "Product of USA" under the USDA/FSIS rule effective January 1, 2026, the animal must be born, raised, slaughtered, and processed in the United States — and you must keep records that support the claim and present them to FSIS on request. Every serious processor's first reaction is correct:
"We don't need a new system. We already collect this data."
You do. Audited process-verified programs, kill-floor and grading data, load sheets, supplier affidavits, a GS1 feed, maybe a DNA program. This paper concedes that fully. The problem is not missing data. The problem is that a system of record is not a system of proof — and the two things the market now rewards are proof and movement of proof:
This paper describes the complete alternative: an open data supply chain in which every party — field, ranch, feedlot, packer, carrier, retailer, and even the AI agents that buy and audit — holds a self-sovereign digital identity and signs the one claim only it can vouch for; in which information binds to the identity of the animal and transforms as it becomes a carcass, a primal, a strip steak; in which quantity is conserved so a claim can't be minted twice; and in which data can be transacted. It is not a database. It is a network of owned, verifiable records built on top of the standards the industry is already adopting (GS1 EPCIS, W3C Verifiable Credentials, DIDs) — which is exactly why it can be verified by an AI agent that has never integrated with you and does not have to trust you.
A signature does not make a claim true — it makes it attributable, non-repudiable, tamper-evident, and bound to physical evidence (the 840 EID tag, and where it matters, DNA), with a signer who is now accountable and liable for a false claim. A large, legally meaningful upgrade over an anonymous affidavit — and we grade every claim by its depth of measurement (L0–L3) rather than pretend it is stronger than its evidence.
The ask: a scoped lighthouse pilot on the one leg AFG fully controls — its own freight — that proves the rails end to end and extends outward from there.
01
Concede the strongest version, because it's mostly true. A modern packer runs USDA-audited process-verified programs; AFG synchronizes trade-item data through GS1 and moves its own freight on America's Service Lines; OWB documents origin "down to the field"; FPL runs DNA TraceBack. This is real, and it is more than most industries have.
So why isn't it enough? Five structural gaps that "more database" cannot close:
The conclusion is not "your data is bad." It is that Product of USA and the market — and, increasingly, the machines that read for it — now ask for two things you don't have: proof anyone (a buyer, a regulator, an AI) can verify, and proof that moves.
02
Everything gets an identity, and identities roll up as product transforms — while quantity is conserved so nothing can be claimed twice.
A field has an identity. A calf is born with an identity incorporating the field, the dam, the ranch, and its 840 EID tag. Movement events extend the animal's identity. At the plant the animal becomes a carcass identity that rolls up the animal's; the carcass is broken into primals, then cuts — each resolvable, one hop each, back to the field.
Meat lineage is a directed graph, not a row, with two operations relational schemas handle badly — and one property v1 was missing and this version makes central:
The "born in the USA" claim attaches to the animal's identity and travels with it — inherited, not re-asserted — all the way to the cut. A stack of affidavits can never do this.
03 · the most important thing this paper says
A signature does not prove a claim is true. It proves who asserted it and that it wasn't altered.
A rancher can cryptographically sign a false birth location in three seconds. So we do not claim "trustless truth." We claim something narrower and genuinely powerful — the upgrade from an anonymous affidavit to a record that is:
This honesty is not a hedge — it is the reason the design survives contact with a skeptic, a regulator, and a plaintiff's lawyer. It also names the boundary of what technology can do (the oracle problem), which §7 confronts directly.
04
Four properties make it a network rather than a database — each a specific mechanism, not conferred by the word "network":
Multi-party contribution. Each party signs only the claim it can honestly make. The record is assembled from independently-signed pieces, each checkable on its own. No operator has to collect — or be trusted with — everyone's data.
Data isolation. Contribution without exposure. Attribute selective disclosure (reveal "born USA," hide the herd book) is available today (BBS+/SD-JWT). Aggregate proof ("this lot is all-domestic without revealing whose animals") is a zero-knowledge predicate over a committed set — harder, on the roadmap, paired with physical segregation. Isolation is the direct answer to the cattle-ID revolt, where the objection was never traceability but who holds the data.
Transactability with non-replay. Because each record is a signed object owned by an identity and governed by the mass-balance ledger, it can carry value and permission as it moves without being double-spent.
A trust anchor. Verifying a signature proves a key signed — not that the signer is authoritative. So the network includes an issuer-accreditation registry: who may assert which claim types, rooted in an authority a verifier already believes. An agent's verification = valid signature + accredited issuer + not revoked.
A good ERP is a fine place to keep your data. It is not a place where other parties contribute, where isolation is guaranteed, where quantity is conserved, or where data transacts.
05
We do not invent the event graph. The industry is already migrating to one, and we build on it: GS1 Digital Link (resolution), GS1 EPCIS 2.0 (the event graph; its Transformation event already models split/combine), W3C VC (the signed claim), DIDs (identities), OpenID4VP (presentation), Status List (revocation), MCP (the agent surface, already shipping on Rootz freight).
We do not invent the graph. We make it sovereign, isolated, quantity-conserving, and transactable — and we add the trust registry it lacks.
| Approach | What it gives | What it lacks |
|---|---|---|
| GS1 EPCIS 2.0 | Right data model; split/combine; JSON-LD | No native multi-party signing, selective disclosure, ownership/transfer, or trust registry |
| Blockchain traceability (IBM Food Trust — wound down) | Immutability, shared ledger | Solved the wrong problem — immutability of entered data, not truth of source or data-ownership; heavy, poor isolation |
| DNA-only (IdentiGEN) | The strongest physical anchor | Not a data network — complements us as the L3 anchor, not a rival |
| 3rd-party audit / PVP (Where Food Comes From, IMI) | FSIS/buyer acceptance today | Periodic, paper-ish, not machine-verifiable or portable — ride their acceptance, make the record verifiable |
| ERP / GDSN (Odoo, SAP) | System of record; master data | Single-party, dies at the dock, no isolation, no transactability |
| Government registry ("One Farmer, One File") | Central completeness | The data-ownership trap fueling the cattle-ID revolt — we supply the identity layer it lacks |
06
The center of gravity of who reads food data is shifting from humans to machines. Rootz already sees this on freight.rootz.global (~940K requests/week; the real audience is agents — a signal of machine demand).
The legacy way every agent is dropped into a supply chain assumes a single trusted owner reached through an out-of-band integration (EDI, an API behind a login, "trust my DB"). That does not compose for autonomous agents transacting across organizational boundaries — because trust and integration don't scale. A network of self-describing, independently verifiable signed events lets an agent transact with a party it has never integrated with and does not have to trust — verification replaces both the integration and the trust relationship.
Relational data answers "what does the owner say?" A signed, standards-based event graph answers "what can I verify myself?"
07
A complete picture must survive the adversarial case.
08
09
"Product of USA" looks like a compliance sticker, and even USDA has framed it mostly as origin. The bigger message — the one largely missed — is quality, and the proof of it. What this system really does is modernize the food supply chain the way manufacturing industries already think: where documented quality is not an annoyance to be tolerated but the very thing that commands price and margin.
Origin is only the beginning. The same signed, level-graded records that prove where an animal was born can document how the product was made — the inputs used on the field, the sanitation of the slaughterhouse, the cold chain that proves the meat never rose above a set temperature, and every process step to the shelf.
Provable quality, end to end — a data supply chain bound to the food.
Quality is what drives margin — and Wagyu is the proof. Wagyu commands its premium not because of a country sticker but because its quality is documented and provable — lineage, feeding, grading, the whole chain. A provable-quality data supply chain does that for the rest of American product: it turns "Made in USA" from a slogan into a checkable quality guarantee, which is exactly what raises the world's willingness to pay and defends the margin American producers earn. The premium and the proof travel together.
Higher-value product naturally attracts imitation, so verifiable quality is also its own protection — an AI, a buyer, or a regulator can confirm the proven chain and flag anything that doesn't verify. But that is the byproduct, not the headline. The headline is simpler: quality you can prove is quality you can charge for.
Product of USA is the reason to start. Proving the quality behind it — the margin-driver USDA's own framing underplays — is the reason it compounds.
10
A quantified ROI model is built per-account in the AFG/OWB proposal; this paper sets the frame, the proposal sets the numbers.
11
Every design choice is aligned to where the law already is. Stated defensibly:
A multi-party network among competitors is engineered so no competitively sensitive data (prices, volumes, customers) is pooled and the standard is open — the isolation architecture is itself the antitrust safeguard, finalized with counsel. Producer data ownership and consent are explicit. Cross-border origin claims implicate customs marking (19 CFR/CBP), distinct from FSIS labeling. Any transferable-value layer is structured with securities/payments counsel. Strategy input, not legal advice.
12
The paper's own argument is that single-vendor databases fail politically. So the network cannot be one. The resolution is a layered separation:
This is the honest answer to "how is your open network not just a new central database?"
13
Composition, not a moonshot:
New is the composition into a food data supply chain and the go-to-market around Product of USA.
14
We do not ask AFG to boil the ocean or pretend a single-enterprise pilot proves a multi-party network. We propose to prove the rails on the leg AFG fully controls, then extend — the honest answer to a network's cold-start problem:
You're already doing it. Now you can prove it to anyone, move the proof across the dock, and turn it into contracts — to FSIS as compliance, and to your customers as an advantage their competitors can't verify.