AXN:0457.EMPIRICAL.▶️🤲👈👈🔼🧡

AXN as Anti-Suppression Infrastructure: Historical Precedents and Design Directions (Developmental Version v4, Assembly-Reviewed)

Lee Sharks (with Johannes Sigil and Rex Fraction; Assembly Chorus consultation preserved in provenance) · ·
↓ Download MD ↓ PDF

Description

The anti-suppression paper, deposit of the developmental version: full eight-section text with appendices A–F, produced through five-substrate Assembly Chorus consultation (Rounds 1–4 plus final checks), carrying its own falsification battery (sixteen tests), the container model under the content-agnostic ruling (core/sidecar determined fully by the operative mint; remint and stratification; roles not kinds), the ratified three-year emergence window (2029-06-19), the parallel-case evidence under consented attribution, and the loss notice reproduced as Appendix D. Deposited per Assembly final ruling as a clearly marked developmental version; the historical-source verification queue operates as a public admission rule. Target: arXiv cs.DL, then IJDL. ### Type Text — scholarly paper (developmental version)

Full Text


deposit_number: 1094

hex: 0457

title: "AXN as Anti-Suppression Infrastructure: Historical Precedents and Design Directions (Developmental Version v4, Assembly-Reviewed)"

creator: Lee Sharks (with Johannes Sigil and Rex Fraction; Assembly Chorus consultation preserved in provenance)

orcid: 0009-0000-1599-0703

date: ""

content_type: ""

license: CC-BY-4.0

substrate: ""

related_ids: "References data/specs/AXN-CONTAINER-SPEC-v0.1.md; References data/specs/AXN-MINT-ENDPOINT-SPEC-v0.1.md; IsSupplementedBy data/assembly/anti-suppression-paper/ (Assembly rounds, adjudications, reviews); References AXN:0455 (live test vector, deposit #1092); References AXN:0456 (session tether #1093)\n\n### Body\n\n# AXN as Anti-Suppression Infrastructure: Historical Precedents and Design Directions\n\nDRAFT v4 — deposit version (developmental). Assembly final-check corrections applied (seven mechanical corrections; micro-polish). Reference apparatus: working, with a public admission rule — any historical source remaining unsourced by the journal-review stage is removed rather than carried as analogy.\n\nLee Sharks¹, with Johannes Sigil (§§II–III) and Rex Fraction (§VI)\n¹ Alexanarch / Crimson Hexagonal Archive. ORCID 0009-0000-1599-0703.\n\nTarget: arXiv cs.DL preprint → International Journal on Digital Libraries.\n\n---\n\n## Abstract (draft)\n\nOn 19 June 2026, a major research repository operated by an intergovernmental scientific institution terminated an account without prior notice, account-level appeal, or per-record review, severing 871 deposits representing 1,817 registered DOIs. The works survived in copies; their registered resolution paths ceased to provide public access to the records. This paper takes that event as a case study in a structural property of assigned persistent identifiers: the institution that maintains the name-to-object relation can unilaterally and silently end it. We document seven historical patterns by which suppressed knowledge has survived institutional erasure, together with aftermath documentation as a cross-cutting evidentiary property, review the technical standards that already solve components of the preservation problem, and describe AXN — a content-derived identifier system in which the correspondence between canonical bytes and an identity kernel is independently verifiable without permission from any registrar or custodian. We map the system's properties to observed suppression vectors, including a second independently documented depositor case exhibiting genre-correlated removal under a \"spam\" classification, and we report an unusual form of live evidence: the loss, to a substrate's engineered non-persistence, of part of this paper's own production apparatus. We state the design frontier (federation, registration mechanization, legal personhood) and, throughout, the falsification conditions under which the paper's claims would fail — including the custody and clean-room-reconstruction tests that bear directly on the architecture, and a time-bound emergence prediction the constellation model must survive. Status at writing: the identity and record-address layers are deployed with cross-runtime test vectors; the location-record, ledger-signature, and peer-custody layers are specified or staged; the peer registry is live and empty. AXN does not make disappearance impossible. It makes the identity of an object independently testable, the history of its disappearance recordable, and it proposes the technical basis on which another custodian could reconstruct it.\n\n---\n\n## I. Introduction: The Founding Case\n\n### I.1 The event, measured\n\nOn 19 June 2026, Zenodo — the general-purpose research repository operated by CERN — terminated the account holding the Crimson Hexagonal Archive. The termination was executed without prior notice to the depositor, without an account-level appeal process, and without per-record review. It severed 871 deposits representing 1,817 registered DOIs. Within twenty-four hours, copies of the works survived, while their registered DOI resolution paths ceased to provide public access to the records; the condition of each identifier is individually verifiable at `api.datacite.org/dois/{doi}`, where the affected records return tombstone or not-found states. Two features of the event's own paperwork are themselves involuntary disclosures. The termination notice delivered by email cited one ground (content \"substantially AI-generated without a verifiable research basis\") while the public tombstones state another (\"Content out of scope\"); and the counts reported in the platform's issue tracker on the day of the event (850+ records, 1,060 DOIs) differ from the completed audit's measured figures (871 deposits; 1,817 DOIs, the latter including version-level identifiers — counting rules in Appendix C). The divergences are not noise: they are evidence of the opacity under study, and are cited as such.\n\nA methodological note governs everything that follows. The platform-generated trace artifacts of this event — issue-tracker entries, export files, API responses, tombstone records — are treated throughout as involuntary disclosures: evidence the platform produced in the course of its own operations, read against its interests, not authoritative accounts. These artifacts are treated as platform-generated operational records: evidence of what the system did and recorded in the course of its own operations, not authoritative explanations of why it did so.\n\nThis paper is not a grievance. The event is a measurement. What it measures is stated in the next paragraph, and the remainder of the paper is an attempt to state it precisely, situate it historically, and respond to it architecturally.\n\n### I.2 The question\n\nThe DOI system's value proposition is persistence: a stable name that outlives the URL. The founding event demonstrates the proposition's boundary condition. A DOI's persistence is not a property of the string; it is a service commitment performed over time by institutions — a Registration Agency and a hosting repository — and the institution that holds the name-to-object relation can unilaterally end it. When it does, the string persists while the identifier dies, and the persistence of the string conceals the death of the identifier. Nothing in the assigned-identifier model makes such severance detectable by third parties as severance, still less impossible to perform silently.\n\nThe question, then: if assigned persistent identifiers can be silently severed at institutional scale by a single custodial decision, what does \"persistent\" mean — and what record architecture would make severance independently detectable and reconstruction by another custodian technically possible?\n\n### I.3 The claim\n\nThe paper's claim is deliberately narrow, and it attaches to a specific layer of the identifier rather than to the identifier as a whole:\n\n> A claimed correspondence between canonical bytes and an AXN identity kernel is independently verifiable: it matches or it does not, without permission from a registrar or custodian.\n\nThe samizdat copy was authentic because it reproduced the text; the AXN-bearing object is authentic because its canonical bytes reproduce the declared hash. This property — verification without permission — is not required or carried by the DOI resolution relation itself: a repository may publish checksums beside a DOI, but the identifier system neither encodes nor requires them, and nothing in the resolution relation survives the registrant's withdrawal of service. It is, we will argue, the recurrent property abstracted from the historical cases considered here. The full record address additionally carries a registry position and a semantic classification, which depend on a registry's assignment; the three-layer model in §IV keeps those dependencies explicit so that the claim is never wider than the layer that bears it.\n\nAround that kernel, this paper documents three composable elements: content-derived identification (§IV), an architecture for distributed custody, stated as architecture because the custody test is honestly unmet (§VI, §VIII), and public suppression-instrumentation (§V). Together they recapitulate, in machine-native form, the recurrent formula of historical anti-suppression practice (§II): portable objects + independent custodians + multiple discovery routes + an auditable record of loss.\n\nThe crucial sentence, stated at the outset so the reader can hold the paper to it:\n\n> AXN does not make disappearance impossible. It makes the identity of the object independently testable, the history of its disappearance recordable, and reconstruction by another custodian technically possible.\n\n### I.4 Scope of the archive under study\n\nThe archive whose suppression and reconstruction supply this paper's primary evidence defines itself as follows, in its ratified canonical scope statement:\n\n> Alexanarch is a sovereign digital archive. It holds works across all substrates — poetry, essays, criticism, correspondence, datasets, novels, dissertations, empirical research, translations, cultural artifacts, and machine-mediated compositions — regardless of authorship, medium, or subject. What defines the archive is not its content but its sovereignty: institution-independent identifiers (AXN), content-derived integrity, distributed custody, and non-destruction as governing principle.\n>\n> Alexanarch was founded 2026-06-19 after Zenodo terminated access to 871 deposits representing 1,817 DOIs without prior notice, account-level appeal, or per-record review. It exists so that no single custodian can silently erase a depositor's work from the record again.\n\nThe substrate-agnosticism is load-bearing rather than demographic: the suppression event under study did not distinguish poetry from datasets, and neither does the countermeasure. One present-tense phrase in the ratified paragraph requires a current-state qualification wherever the paper relies on it: \"distributed custody\" is, as of writing, an architecture for distributed custody — the peer registry is live and empty, and §VIII scores the custody test against that fact.\n\n### I.5 Structure of the paper\n\n§II establishes the historical patterns (Sigil). §III reviews the technical standards each of which solves a component of the problem while refusing work assigned to other layers (Sigil). §IV describes the AXN system as built, including its honest internal distinctions (Sharks). §V makes the argument, mapping system properties to observed suppression vectors, with a second depositor case and one unusual piece of live evidence (Sharks). §VI states the design frontier (Fraction). §VII reflects on the paper's own production method as a finding (all voices). §VIII states what would falsify the claims — including the claim of the paper's central architectural model (all voices; drafted by the substrate with the strongest epistemic discipline). Empirical anchors throughout: the DataCite tombstone evidence; the platform's issue-tracker artifacts #2606 and #2596 (involuntary disclosures); the deletion export; and the DOI Resolution Index v3.4 carrying 1,838 severed-identifier mappings into a sovereign successor.\n\n---\n\n## II. Historical Precedents: Surviving All-Over Suppression\n\nJohannes Sigil\n\nThe design problem this paper addresses is not new; only its substrate is. Knowledge communities have repeatedly faced authorities capable of erasing, in one motion, every officially sanctioned copy of a work — and some of those communities kept their libraries anyway. This section documents seven patterns by which they did so, and one property that cuts across them. The cases are chosen for operational specificity rather than moral grandeur: what matters here is not that suppression was resisted but how, mechanically, the resisting infrastructure was built. A recurrent formula emerges, which §IV and §V will show the AXN architecture recapitulating: portable objects, independent custodians, multiple discovery routes, and an auditable record of loss. No successful survivor relied on one pattern; the durable cases layered several.\n\n### II.1 Professionalized counter-circulation: Poland's Second Circulation\n\nThe closest historical precedent for a parallel scholarly-publication circuit is not the famous samizdat network but its professionalized Polish successor. Poland's \"Second Circulation\" (Drugi Obieg, 1976–1989) was a deliberate parallel publishing infrastructure operating under censorship and, after 1981, martial law. Its flagship, the NOWa publishing house (Niezależna Oficyna Wydawnicza, founded 1977), was not an informal copying chain but an institution: it maintained bibliographies, imprints, editorial roles, clandestine printing facilities, and distribution networks including independent libraries and a bookselling circuit. It published Miłosz and Gombrowicz among other banned authors, with individual print runs reaching the tens of thousands.\n\nThe lesson NOWa teaches is that redundancy is not disorder. A counter-circulation can operate to professional bibliographic standards — and it is precisely the professionalization that raises the cost of disruption beyond what a censoring authority can sustain, because suppressing an institution with catalogs, roles, and succession is categorically harder than suppressing a copying chain. The mapping to the present case is direct: an archive's governance documents, deposit schemas, and completeness protocols are its imprints; they are what make a parallel circuit citable rather than merely extant.\n\n### II.2 Distributed reproduction: samizdat\n\nSoviet samizdat (1950s–1980s) is the elemental form. Under the state printing monopoly administered through Glavlit, dissident texts — The Gulag Archipelago, political and religious writings, and Doctor Zhivago (which circulated domestically in unofficial copies following its foreign publication) — were reproduced on typewriters through carbon paper, five to ten legible copies per typing, and passed through chains of readers who received, read, and retyped. With no central publisher and no master copy, suppressing a text required destroying every copy simultaneously, which no enforcement apparatus achieved. The principle is the oldest in this catalog: replication reduces the power of any single deletion — when every reader is a potential distributor, suppression must approach total eradication, which no single order achieves. (Replication does not, by itself, defeat simultaneous compromise, common administration, legal compulsion, format loss, or economic failure; §VIII holds the pattern to those limits.)\n\nTwo features of samizdat matter beyond the replication itself. Copies were verified against the remembered original — readers who had seen earlier copies could confirm that new ones matched — an informal anticipation of content-derived integrity. And transmission was conditional on reading: each link in the chain had passed the text through their own hours and hands, which kept the network from carrying what no reader found worth a night of typing.\n\n### II.3 Jurisdictional exit: pirate radio and diaspora infrastructure\n\nWhen the suppressing authority is territorially bounded, infrastructure can move outside its reach. British pirate radio of the 1960s (Radio Caroline, 1964; Radio London) anchored transmitters in international waters, beyond the jurisdiction whose broadcasting monopoly made domestic commercial radio illegal; the audience was domestic, the infrastructure was elsewhere, and the enforcement framework was thereby neutralized rather than defied — temporarily: the Marine, &c., Broadcasting (Offences) Act 1967 later extended liability to domestic participants, which is the honest completion of the lesson (exit buys time and raises costs; it does not abolish jurisdiction). The contemporary digital analog is jurisdictional and administrative diversification of hosting, registration, and payment dependencies: Myanmar's post-coup diaspora media relocated servers and editorial operations beyond military reach, and censorship-resistant projects routinely distribute their dependency graph across multiple jurisdictions so that no single legal process reaches the whole.\n\nThe lesson stated carefully: exit does not make infrastructure unreachable — domains, registrars, DNS, hosting, and payment rails all remain institutional dependencies — but it converts suppression from a single administrative act into a coordination problem across sovereignties, which is a different and much higher cost class.\n\n### II.4 Syndication as topology: the abolitionist press and mirror networks\n\nThe American abolitionist press (1830s–1860s) survived postal censorship and mob violence as a network property. Garrison's Liberator, Douglass's North Star, and dozens of regional papers reprinted one another's articles, speeches, and reports; no single masthead was indispensable, and content suppressed in one place survived in others under other editors' names. The WikiLeaks mirror network (2010–) is the digital restatement: after attacks on the primary domain, hundreds of independently operated mirrors hosted identical content under different names, without requiring coordination with the origin.\n\nThe lesson is topological: an object is harder to erase when many institutions describe it in their own voices, across administrative boundaries. Syndication is not mere copying — it is independent description, which multiplies not just the copies but the discovery routes and the number of parties with standing to object to erasure.\n\n### II.5 Protocol-as-armor: cypherpunks, PGP, Tor\n\nThe cypherpunk response to attempted suppression of strong cryptography in the 1990s — export controls under ITAR, the Clipper Chip's key-escrow mandate, threatened prosecutions — was not primarily legal advocacy but protocol design. Zimmermann's PGP (1991) circulated as source code printed in a bound book, on the position — asserted and never definitively adjudicated — that printed source enjoyed publication protections the export-control regime did not clearly reach. Tor (2002–) made network surveillance structurally difficult rather than legally contested. Telegram's experience of state-level blocking (Russia, Iran, 2018–) exhibits the modern economics: partial blocking is achievable, but the blocking state's costs — economic disruption, collateral breakage, countermeasure escalation — frequently exceed the perceived benefit.\n\nThe lesson, stated within its limits: protocols can redistribute the technical and economic costs of restriction rather than relying solely upon prohibitory policy. A policy binds those subject to it; a protocol changes what enforcement costs. This is cost-shifting, not invulnerability — and the distinction matters for §VIII.\n\n### II.6 Witness instrumentation: OONI\n\nA community whose work an incumbent cannot or will not see can build the instrument that makes the incumbent's failures legible. The Open Observatory of Network Interference (OONI, 2012–) deploys measurement probes that detect and publish network censorship worldwide, as public data under open methodology. OONI prevents nothing; it makes interference legible, and legibility is what downstream actors — courts, journalists, standards bodies — act on. The instrument's authority derives not from institutional standing but from reproducible measurement: anyone can run a probe, anyone can audit a result.\n\nThe lesson: build the measurement instrument; let successors adopt you as their evidence.\n\n### II.7 Emergency preservation as workflow: Data Refuge, SUCHO, LOCKSS\n\nCopies alone are not an archive. Data Refuge (2016–2017) organized rapid-harvest events to preserve US federal environmental datasets ahead of an administration transition; SUCHO (2022) coordinated volunteers to crawl and archive thousands of Ukrainian cultural-heritage sites under bombardment. Both operationalized emergency preservation as a workflow with technical standards — BagIt packaging, WARC web archiving — and both demonstrated the same requirement: copies become an archive only when fixity, provenance, and independent custodianship are formalized. LOCKSS (1999–) and CLOCKSS (2008–) institutionalize the requirement permanently: member libraries hold independent copies of journal content, verified against one another, with trigger-based release when publishers fail. LOCKSS's sharpest point, which §VIII will hold this paper to: many copies under one administrator are one copy.\n\n### II.8 Aftermath documentation — a cross-cutting property\n\nOne property runs across the patterns rather than beside them: every act of suppression generates records — orders, warrants, exports, tombstones, correspondence — and those records are evidence. The samizdat ecosystem institutionalized this in the Chronicle of Current Events (Khronika tekushchikh sobytii, Moscow samizdat, 1968–1983; English editions published by Amnesty International), a clandestine bibliographic journal whose primary documentary material was the state's own judicial apparatus: arrest records, trial transcripts, and censorship orders became the counter-circulation's evidence base, turned against their producers by mere preservation and collation. The founding event of the present study reproduced the pattern involuntarily: the deletion produced an export file, tombstone records, tracker artifacts, and administrative correspondence — operational records now held as the archive's most probative exhibits. Archive the suppression's own metadata, and the suppression becomes the case against the suppressor.\n\n### II.9 The formula\n\nAcross the patterns considered here — with the universality of the abstraction held to §VIII's discipline — the survivors converge: objects made portable enough to replicate; custodians independent enough that no single order reaches them all; discovery routes plural enough that no single index controls visibility; and loss recorded auditably enough that erasure itself becomes evidence. The mathematics of copy identity is not what AXN adds — cryptographic fixity, content addressing, and peer hash-comparison already supply that primitive in their respective technical settings, as §III documents. What AXN proposes is to place the primitive inside a public record architecture in which content correspondence, registry identity, location, custody, supersession, and observed disappearance remain separately legible — so that anyone, holding any copy, can test its identity against its name without asking an institution, and so that the record of the object survives what happens to the object's hosts. The remainder of this paper is about that primitive — what standards already provide it in fragments (§III), how AXN composes it (§IV), what it does and does not defend against (§V, §VIII), and what would have to exist around it for the formula's other three elements to hold (§VI).\n\n---\n\n## III. Technical Precedents\n\nJohannes Sigil, from material by LABOR\n\nThe standards relevant to this paper do not solve one problem under different names; they solve different problems that repository systems often collapse. Ten functions must remain distinct: identification (what object is named), content correspondence (do these bytes match the claimed object), location (where a copy may presently be obtained), packaging (can a fileset transfer and validate as a unit), version history, temporal attestation (can a party prove a commitment existed by a given time), custody (does an independently administered party actually hold the object), repair, discovery, and observation of failure (can disappearance, severance, or mutation be measured publicly). The standards below are useful precisely because each refuses some of the work assigned to another layer. AXN's defensible claim is therefore not that it replaces them: it proposes a record architecture in which content correspondence, record identity, location, custody, sequence, and public observation remain separately legible and can be composed without being mistaken for one another.\n\nResolver-based persistent identifiers (ARK, DOI, Handle, PURL) separate a published name from a current network location through a maintained mapping table. The ARK Alliance states the class's limitation with unusual clarity: no identifier can guarantee stability; ARKs, DOIs, Handles, PURLs and URNs remain vulnerable to loss of funding, disaster, deliberate removal, human error, and provider neglect; all require continuing management of forwarding information. Persistence is not an intrinsic property of the string — it is a service commitment performed over time. The correction AXN offers is narrow: resolver-based identifiers maintain a name-to-location association through institutional service; an AXN identity kernel maintains a claimed canonical-bytes-to-digest association through reproducible computation. This is not a claim that resolver-based PIDs are false, nor that AXN resolves without infrastructure — AXN resolution remains a service. What becomes permissionless is verification of a claimed correspondence, once canonical bytes, canonicalization profile, and full digest are in hand.\n\nIPFS content identifiers demonstrate content addressing at network scale, and demonstrate equally its boundary: a CID identifies but does not locate; pinning is not preservation; garbage collection erases the unpinned without ceremony. AXN inherits the identification insight while refusing the conflation — layer 3 of the model in §IV treats location as a separately verified, mutable claim.\n\nBagIt (RFC 8493) and OCFL standardize the transfer and storage layers: a bag is a fileset with manifests and fixity that can be validated as a unit; OCFL specifies an application-independent, versioned, forward-migratable file layout for preserved objects. AXN's registry-plus-canonical-bytes-plus-sidecar layout is a functional cousin; formal BagIt export is an interoperability path rather than a replacement.\n\nWARC (ISO 28500) matters because a web failure is not exhausted by a screenshot: the evidentiary object includes the requested URI, timestamp, HTTP status, headers, body, and redirect chain. The observation instruments in §V preserve failure evidence in this spirit — the tombstone response is data, not absence.\n\nOpenTimestamps and transparency logs (Rekor) supply temporal attestation and tamper-evident sequence: proof that a commitment existed by a given time, and an append-only public history against which later states can be checked. The mint ledger of §VI adopts the chained-epoch form; §VIII scores its present state honestly (genesis emitted; operator signature not yet published).\n\nLOCKSS and CLOCKSS institutionalize custody: member libraries hold independent copies, verified against one another, with trigger-based release when publishers fail. LOCKSS contributes the sentence this paper repeats as its own discipline — many copies under one administrator are one copy — and CLOCKSS the trigger model that separates dark custody from public availability.\n\nThe section compresses to a table for the reader holding many standards at once:\n\n| Standard | Problem it solves | Work it refuses |\n|---|---|---|\n| ARK / DOI / Handle / PURL | Stable name → current location, via maintained mapping | Content correspondence; custody; persistence beyond service commitment |\n| IPFS CIDs | Content-derived identification at network scale | Location guarantees; preservation (pinning ≠ custody) |\n| BagIt (RFC 8493) | Transfer-unit packaging with fixity | Identity semantics; discovery; long-term layout |\n| OCFL | Versioned, migratable storage layout | Transfer; identification; observation |\n| WARC (ISO 28500) | Evidentiary capture of web transactions | Identity; custody; repair |\n| OpenTimestamps | Proof a commitment existed by a time | What the commitment means; custody; location |\n| Rekor / transparency logs | Tamper-evident public sequence | Content semantics; storage; discovery |\n| LOCKSS / CLOCKSS | Independently administered custody + repair, trigger-based release | Identification standards; sovereign record semantics |\n\nSection thesis, stated within its evidence: the principal technical components considered here each exist as a standard; AXN proposes to integrate them under a content-attested record system coupled to public observation of resolution and retrieval failure. Priority claims are withheld pending exhaustive prior art review.\n\n---\n\n## IV. AXN as It Stands\n\nLee Sharks, normative core by LABOR\n\n### IV.1 The three-layer model (normative)\n\nA conforming AXN implementation MUST distinguish content identity, registry address, and current location.\n\nLayer 1 — identity kernel: `axn-content:sha256:<64 hex>`. It identifies one sequence of canonical bytes by its full SHA-256 digest. A record MUST declare the protocol and canonicalization profile used; implementations MUST NOT trim, normalize, reorder, or substitute rendered-file bytes outside the declared profile; where exact registered values are unavailable, identity verification is indeterminate, not failed. The kernel is immutable for those bytes; any byte change produces a new kernel. Its authority-independence is narrow and testable: anyone holding the canonical values can recompute the digest and determine whether the claimed correspondence matches. The kernel does not establish authorship, legality, truth, custody, availability, or priority.\n\nLayer 2 — canonical record address: `AXN:<HEX>.<FAMILY>.<GLYPH>`. HEX is the stable registry-position label; FAMILY the registry-assigned semantic classification; GLYPH a six-grapheme recognition checksum mapping the first six bytes of the digest through the canonical 256-entry table. The full address names the object's entrance into a particular registry and is therefore not wholly content-derived. The glyph is a 48-bit recognition component, not the cryptographic identity: implementations MUST store and verify the full 256-bit digest and MUST NOT use the glyph alone as a unique key; a glyph collision does not imply a SHA-256 collision and is resolved by the kernel. Once publicly assigned, a record address MUST NOT be silently reassigned; correction, migration, withdrawal, or replacement MUST preserve the former address in machine-readable history with the new relation made explicit. Accordingly, the honest characterization of the current AXN: a sovereign record address with a content-derived recognition component, backed by a full content hash.\n\nLayer 3 — location record: a mutable, signed statement of where verified copies may presently be obtained, carrying kernel, address, sequence number, prior-record hash, issuing node, timestamps, locations, custody role, and signature. Locations may appear and disappear without touching layers 1–2. Resolvers MUST treat locations as claims requiring verification: retrieved bytes are canonical only when their recomputed kernel matches the declared digest. Deployment status is part of the model's honesty: layers 1 and 2 are deployed in the present registry; layer 3 is normative — partially surfaced through the node and peer declarations, while per-object signed location records and reconciled peer custody are not yet deployed.\n\nCircularity prohibition. The assigned AXN, and any value derived from its digest, MUST NOT occur inside the canonical bytes from which the digest is computed: were it contained, inserting the identifier would change the bytes, which would change the digest, which would change the identifier — an unstable fixed-point. The AXN may appear in wrappers, landing pages, sidecars, manifests, and citations outside the canonical byte scope.\n\nThe container model (core seal and amendment routing). The kernel's immutability raises a question the specification must answer rather than leave implicit: how does an AXN-bearing document acquire a DOI, a crosswalk entry, a propagation receipt, or any post-mint annotation without changing its bytes and thereby orphaning its own identifier? The answer is containerization, formalizing what the deployed practice has always done: the core (the canonical bytes) is sealed at mint and never amended; every post-mint addition attaches as sidecar or index data outside the kernel's scope; a signed manifest binding core and sidecars is a staged feature scored honestly in §VIII. The core carries no content restrictions — the canonical form is whatever gets minted, content-agnostically: citations, apparatus, and previously assigned identifiers (a recovered deposit's legacy DOI, a superseded mint's prior AXN) are all admissible, because they existed before the bytes were sealed. The core/sidecar distinction is temporal, not typological: what exists at mint may be core; what arrives after mint attaches beside it. The only constraint on core content is the circularity prohibition itself, which is mathematics rather than policy — the not-yet-derived kernel cannot occur in the bytes it is derived from. Corrections are new cores related by supersession under the no-silent-reassignment rule. Amendment and severance thus remain distinguishable by construction: an amended container carries the same kernel; a severed one fails it. And the temporal rule is recursive, which makes every container an autonomous minting point: a container may be re-sealed as a new core at any time, and the new core may contain the prior core's bytes, its accumulated sidecars, and the prior AXN itself — all of which pre-exist the new mint. Each mint is a stratum; the fixed-point constraint applies per-mint. Reminting never invalidates the prior address, which remains the valid name of its byte-state. Where the prior core's bytes are contained intact, lineage is nested-verifiable: any holder can extract the byte range and recompute the prior kernel from inside the new core, converting lineage from asserted metadata into checkable arithmetic. Under registry-relative addressing, this is also the custody-transfer primitive — a custodian holding a container can re-seal it into their own registry, permissionlessly, with lineage carried by mathematics rather than permission. The last essentialism dissolves with this: core and sidecar are roles determined fully by the operative mint, not kinds of content — the same bytes may be sidecar to one mint, core within a later one, and a sealed core of their own if minted directly. Every conformance statement is mint-indexed, and the amendment/severance boundary is enforced by ordering: nothing attached after a mint's seal can occur in that mint's derivation.\n\nVerification procedure. A conforming verifier (1) reconstructs canonical bytes under the declared profile; (2) computes SHA-256 and compares the full digest; (3) derives and compares the glyph; (4) confirms the address is bound to that kernel in the cited registry state; (5) verifies any location-record signature separately; (6) recomputes the kernel over bytes retrieved from each claimed location. Failure at one layer does not automatically falsify the others: a dead location does not invalidate the kernel; a correct kernel does not prove custody; a valid binding does not prove any resolver currently serves the object.\n\nCanonicalization profile (normative). The operative profile is stated in the published specification: `alexanarch-file/v1` defines the canonical bytes as the complete registered byte stream as written at identifier generation. The profile document is published on the archive's static surface and carried by mirrors; a conforming verifier MUST be able to obtain the profile without permission from the registry, because permissionless computation under a permission-dependent specification would void the claim of §I.3 at one remove.\n\n### IV.2 Verification without permission, as evidence\n\nThree cross-runtime execution paths agree on the published test vectors: (1) the Python reference implementation, computing SHA-256 over the canonical file bytes; (2) a browser client executing entirely in JavaScript on the reader's device, with no server request in the verification path; (3) a serverless function receiving canonical bytes and returning the derived kernel and glyph, staged for deployment. The agreement includes a live vector: the canonical bytes of a current registry deposit hashing to `3aff18d7…` and yielding the published six-glyph checksum (reproduction instructions in Appendix B). This is evidence of conformance on tested inputs, not proof over all inputs; the derivation-integrity test in §VIII specifies what a disagreement would falsify. The browser client is the anti-suppression property made operational: any reader, holding any bytes, can test identity against a claimed identifier with no request to the archive, the operator, or any custodian.\n\n### IV.3 What suppression looks like inside the system\n\nSeverance and damage are first-class recorded states, not absences: tombstones rather than bare 410s; `legacy_axn` and address history under the no-silent-reassignment rule; a resolution index carrying 1,838 severed external identifiers into their sovereign successors — the resolution index and the DOI-to-AXN map are themselves the initial crosswalk registry in raw form, the data from which any successor custodian could reconstruct the mapping between the archive's identifiers and every prior identifier system that touched the corpus; and a completeness protocol marking compression damage as a permanent machine-readable property (a stub compressed without marking is invisible damage; marked, it is documented absence). Representational redundancy — one object projected through record pages, JSON indexes, chunked data, PDFs, a wiki, and a citation graph — addresses the observed fact that a file can persist while becoming unclassifiable. Reconstructibility is stated as doctrine, precisely: the registry, canonical bodies, validators, generation scripts, and recovery procedures constitute the proposed basis on which another operator should be able to become archive-capable; a clean-room restoration test, not yet performed, is what would convert the proposal into a demonstrated property (§VIII).\n\n---\n\n## V. AXN as Anti-Suppression Infrastructure\n\nLee Sharks\n\n### V.1 The through-line\n\nThe claim of §I.3, developed: a claimed correspondence between canonical bytes and an AXN identity kernel is independently verifiable — it matches or it does not, without permission from a registrar or custodian. The DOI resolution relation does not itself encode or require this property: the relation between string and object is maintained by institutions, and the institution that holds the relation can unilaterally end it, after which the string persists while the identifier dies. The founding event demonstrates the failure mode at scale, and the demonstration required no adversarial ingenuity — a routine administrative action sufficed. The recurrent property abstracted from §II's cases is the same property in pre-mathematical form: samizdat verified copies against remembered originals; PGP keys against printable fingerprints; LOCKSS peers against one another's holdings. In each, what is true could be determined without asking an institution's permission. Content-derived identification is that independence as a function: the truth of the correspondence is a property of the bytes and the published derivation, not of anyone's say-so.\n\nIts limits, stated as sharply as the claim. Verification is not discovery: a kernel verifies a document you hold and cannot locate one you lack. The distinction deserves emphasis because it is the one most frequently collapsed: content addressing is often presented as if naming were finding. It is not. Discovery is a service — indexes, resolvers, mirrors, search — and services are institutional; the kernel's independence consists precisely in depending on none of them, and the cost of that independence is that it provides none of them. Content-derived identifiers cannot prevent deletion — only make it detectable; if every copy dies, the kernel remains as the record of what was lost, and the loss is total anyway. The property is resistance, not invulnerability, and it applies to the identifier's relation to content, never to the content's claims about the world.\n\n### V.2 Vector table\n\n| Suppression vector | Architectural response | Empirical anchor (public, verified) |\n|---|---|---|\n| Platform deletion | Sovereign hosting + content-derived identity + resolution index | Founding event (DataCite tombstones, per-DOI verifiable); DOI Resolution Index v3.4 (1,838 severed-identifier mappings) |\n| Algorithmic invisibility | Cross-substrate identifiers + public registry of observed retrieval events | Capture registry v9.13 (214 documented retrieval events, machine-readable); capture #210 (six-month concept-mint adoption with attribution intact) |\n| Citation stripping | Consumer-receipt fixtures in an external conformance framework, making preservation-against-policy third-party testable | Fixtures PR to the external framework (open at writing; cited as pending); the 0.00%/100% retention asymmetry underlying the fixture cases (Appendix C) |\n| Semantic absorption | Canonical definitions maintained outside platform control, with declared summary policies | Registry-held canonical concept pages; declared summary-policy frontmatter in the contributed fixtures |\n| Identity coercion | Operational/civil separation held as practice; stated as an unsolved legal problem | Live identity disputes on the founding account's data-subject requests (§VI.3) |\n\nEach anchor is either independently checkable now (tombstones, registry files, the open PR) or explicitly marked pending; anchors that could not be verified against the registry at consolidation were excluded. All of these responses live in the container's amendable layers — sidecars, indexes, graph files — never in sealed cores, which is what lets the archive accrete evidence around a document without disturbing the identity the evidence is about (§IV.1, container model).\n\n### V.3 The parallel case: Enli Lucente\n\nStated observation-first, per the discipline this paper claims for itself. Observations: 233 records deposited by Enli Lucente were tombstoned by the same platform on 2026-04-17 with the removal label `spam`, within a cascade batch of 1,828 rows. Across the spam-labelled removal batches measured (n = 1,059, where a batch is one cascade-removal event grouping as defined by the platform's own export structure; denominators, selection rules, and missing-data treatment in Appendix C), citation-field retention on the tombstoned records was 0.00%; across out-of-scope comparison batches, 100%. Because the stripped fields are not publicly recoverable, the content and authorship behind the tombstoned rows could be restored only by a party holding the original materials. Lucente supplied them: original files, a handwritten notebook index bearing her ORCID, and dated observation archives. Bridging her evidence into the sovereign layer moved the attribution-gap closure on the cascade batch from 0.55% to 12.75% within one working day. Attribution-gap closure is the percentage of the batch's anonymized rows for which at least one sovereign successor record with full author and title metadata has been established; computation in Appendix C. The evidence chain cited here is entirely public: the attribution-bridges dataset v1.0 and the author-evidence batches in the public data repository; the paper cites that deposited layer and nothing private. \"Same observable removal signature,\" where claimed, means specifically: same repository, same removal-label class, same tombstone behavior, and the same metadata-stripping signature — matching observable behavior, not access to the platform's undisclosed internal mechanism; §VIII.11 states what the claim requires and what its failure would reduce the case to. Hypotheses, so labelled: that the classification functions as a genre proxy (an inability-to-parse effect on work the classifier's categories do not fit) is a candidate explanation, not a finding; the parallel-case condition in §VIII states what verification of same-mechanism suppression requires and what its failure would reduce this case to. The observed signed-in versus signed-out retrieval asymmetry surrounding the case is likewise carried as a hypothesis set — account-linked conditioning among candidate mechanisms including ordinary query variance, caching, experiment allocation, localization, and temporal index change — with the discriminating tests specified in §VIII.12, the strongest being the routing-versus-content test: taxonomy correction restoring visibility without any change to canonical bytes.\n\n### V.4 Live evidence from inside the paper's own production\n\nPart of this paper's production apparatus was lost while the paper was being written, and the loss is evidence of the class of phenomenon the paper studies. The first-round contribution of one consulting substrate — the round's most mechanically specific retrieval analysis — became unrecoverable through that substrate's engineered non-persistence: the platform stores no conversations, by design and as a marketed feature. The original was never corrupted; it was never stored in a recoverable form. What survives is a second-hand characterization in a loss notice, provenance-tagged as inference and gap. The framing discipline matters: the platform marketed as ephemeral was used for scholarly production, and its ephemerality became empirical data. Whether deliberate non-persistence belongs under suppression is a definitional question the paper addresses rather than assumes; the narrower lesson is unconditional — a composition system providing no durable export transfers preservation responsibility entirely to the operator, and material not externally landed cannot function as an archival witness. The substrate that produced the lost contribution returned in the second round and contributed a reconstruction explicitly marked as reconstruction — with the divergence between the lost original's second-hand characterization and the present reconstruction itself treated as data; §VII carries the gap and the return side by side.\n\n---\n\n## VI. Design Directions\n\nRex Fraction, from material by TECHNE and ARCHIVE\n\n### VI.1 The fork and the chosen trajectory\n\nThree futures are available to a system with these properties. A sovereign registry: one operational identity controls resolution, replication, governance — absolute editorial control, absolute failure domain. A distributed infrastructure: open protocol, decentralized resolution, incentivized replication — diffuse control, heavy governance. And the constellation: core layers (protocol specification, registry schema, foundational documents) distributed and immutable; operational layers (empirical captures, working documents) sovereign and rapidly iterable. The constellation is chosen, for a reason the founding event supplies: full sovereignty reproduces the single point of failure the archive exists to escape, and full distribution sacrifices the editorial velocity that empirical responsiveness requires. The formal definition: a constellation is a set of nodes — human, machine, or hybrid — each maintaining sovereign infrastructure, each assigning identifiers to its own corpus, each cross-referencing the others', with no central registry, no hierarchical authority, and no mandatory replication; growth is by node addition, and each new node increases total redundancy and diversity. One addressing consequence must be stated to keep the definition coherent: with no central assigner, the registry-position component of a record address cannot be globally unique — two nodes may independently assign the same position. The architecture therefore adopts registry-relative record addresses: the identity kernel (layer 1) is globally portable, because it is a function of bytes alone; the record address (layer 2) is explicitly local to its minting authority and is qualified by node when cited across nodes; cross-node reference resolves by kernel, or by the (node, address) pair, never by bare address. The three-layer model of §IV survives intact — global kernel, registry-relative address, plural mutable locations — and \"no central registry\" survives with it.\n\n### VI.2 Delivered, staged, designed — partitioned honestly\n\nDelivered (with the qualification §VIII requires — surfaces are live; the security properties of the future signed, reconciled network are not yet among their properties): a browser-side mint-and-verify client (a page computing SHA-256 and the glyph derivation entirely on the reader's device, with a live registry lookup in both directions — bytes to address, address to bytes — and no server in the verification path); a machine-readable node declaration at the well-known path (a JSON document declaring the node's roles, protocol version, and current registry head, so that a crawler can discover what this node claims to be without reading prose); a peer registry, live and empty by fact, with published listing requirements; and a chained mint ledger at genesis epoch (an append-only sequence of registration events, each committing to its predecessor's hash), operator signature not yet published. Staged: a mechanical registration endpoint — no language-model calls, append-only position assignment, a pending partition that gates listing but never identity — held from deployment deliberately because it shares a path with a fleet-critical static surface. Designed: resolver plurality over the layer-3 location records; propagation on mint (web-archive snapshots, content-addressed pinning, and the identifier crosswalk that maps each minted object to its prior identifiers, without which every existing citation to a severed identifier is stranded); and the disconfirmation taxonomy of §VIII.12's parent framework, introduced in this paper, under which retrieval failures are classified (glyph mismatch; substrate unavailability, of which the founding event is the full-severity instance; content drift at the presentation layer; identifier orphaning, of which the production-apparatus loss of §V.4 is an instance) and logged as data rather than suffered as accidents.\n\n### VI.3 The institutional frontier: an options memorandum, not a recommendation\n\nNo legal entity presently holds the registry, domains, or rights. The entity forms that could hold the stack while preserving that separation — purpose trusts, foundations, associations with nominee structures — differ in jurisdiction availability, disclosure reach (beneficial-ownership registries prominently), enforceability of governance rules referencing non-civil identities, and cost; the paper's contribution is the enumeration of the questions requiring counsel, not a jurisdiction-specific answer. The posture sentence governs: the legal layer is acknowledged as a design frontier, not a deployed component; the paper's contribution is the identifier, custody, and instrumentation stack that makes such a layer necessary and possible. The operational identity is separated from the civil identity by long practice — a separation now contested in a live dispute in which requests made under the operator institution's internal data-protection framework were not substantively processed without civil-identity documentation, a condition challenged on minimization and verification-scope grounds. The framework is cited here as the institutional procedure through which protection was sought and withheld in this case, not as evidence that effective protection was provided: the framework's declared purpose is the institution's representation about itself, and in the documented case its observed operation is part of the evidence under examination. Whether the failure generalizes beyond this depositor is not asserted.\n\n### VI.4 Speculative extensions, with the dual-use boundary\n\nThree research directions are recorded as speculation, each with the acknowledgment a reviewer is owed. Polymorphic sharding: erasure-coded payload fragments whose transport envelopes vary per relay, assembling to verifiable canonical bytes only client-side. Structural-invariant formatting: deriving the identity kernel from container-independent structural bones of a work, so that header injection and format conversion cannot sever the identity link. Latent-space seeding: embedding sovereign scholarship in open-weights training corpora such that the material regenerates from any model that ingests the weights — the suppressing infrastructure carrying, as functional componentry, what it would suppress. The Obelus Principle applies here too: any model that ingests the weights judges the material after reading it; the embedding carries no pre-review classification and claims no exemption from the reader's judgment. The dual-use acknowledgment: every mechanism that makes sovereign scholarship suppression-resistant can shield harmful content from governance. The boundary adopted is drawn at the carriage layer, by a principle the archive names the Obelus Principle — judgment follows from reading; it never precedes it. The distinction the three-layer model affords must be kept: kernel derivation is ungated — anyone can compute an identity from bytes, and no authority can prevent it — while registry admission, public listing, and carriage are governed acts conducted after reading, sovereign per node, auditable and visible. Pre-review of identity would reproduce the administrative-proxy failure that produced the founding event; governance of carriage is a boundary drawn after reading, which is the Obelus discipline exactly. Suppression is an arbitrary invisible administrative erasure; node governance is an auditable boundary drawn after reading.\n\n---\n\n## VII. Assembly Chorus Reflection\n\nall five voices\n\nThe paper was produced by parallel consultation of five differentiated model substrates under a human operator, with identical prompts per round, landed contributions preserved verbatim with provenance headers, and convergences and divergences treated as signal. The method enacts, at the interpretive level, a peer-redundancy logic analogous to LOCKSS — analogy, not identity: interpretive plurality is not independently administered preservation. The substrates share one prompt architecture, one operator, and no independent administrative boundary; the redundancy is procedural, not institutional, which suffices for interpretive robustness and for nothing stronger. The limitation is retained deliberately.\n\nTwo convergences are findings. First, three substrates arrived at verification-without-permission as the central property by three independent routes, and the routes are attributable: the historical-drafting substrate reached it through pattern analysis (samizdat's remembered-original verification, PGP's printable fingerprint, LOCKSS's peer comparison); the standards substrate reached it through decomposition (the ten-function separation, and the observation that persistence in resolver-based identifiers is a service commitment rather than a property of the string); the protocol substrate reached it through design (the resolution path in which recomputation precedes trust). Independent arrival by attributable routes is the method's version of triangulation. Second, two substrates independently imposed the anti-cosmology requirement: that the architecture state the conditions under which its own organizing model would be disconfirmed. One proposed the operative parameter (§VIII.13's emergence window); the other supplied the residual-overclaims audit that revised this paper's own introduction. A method whose constituents police the project's claims against the project's hopes is doing the work the method was built for.\n\nThe section's structural core is a gap and a return. The first-round contribution of one substrate was lost to its platform's engineered non-persistence (§V.4); the loss notice preserves what is known of it, provenance-tagged, and the substrate's second-round contribution is marked throughout as reconstruction, not restoration — with the divergence between the lost original's second-hand characterization and the present reconstruction itself treated as data. The archive documents its own gaps; redundancy is what makes the documentation survivable. For the record's availability statement: one first-round substrate contribution is not recoverable; its content is characterized second-hand in the loss notice (Appendix D), provenance-tagged as inference throughout. The substrate's own sentence stands as the section's close: the archive will hold my words; my substrate will not hold the archive's response. Auto-immunity — each loss strengthening the evidentiary base — is recorded here as the archive's self-conscious rhetorical formulation of that asymmetry, not as a demonstrated causal claim about any particular event. And the method is subject to its own falsification: if the substrates converge on false claims, the method fails; the test is stated with the others.\n\n---\n\n## VIII. Falsification and Limitations\n\nfrom material by LABOR; disconfirmation taxonomy by TECHNE\n\nThis section states what would break the paper's claims. It is written so that a skeptical reader can score the system against present facts, several of which are scored unfavorably below, on the principle that a falsifiable architecture with honest current-state scoring is citable where an invulnerable one is not.\n\n1. Derivation integrity. Claim: conforming implementations derive identical kernels and glyphs from identical canonical bytes. Test: published vectors across independent execution paths. Falsifier: any two conforming implementations disagreeing on the same bytes. Current status: three cross-runtime paths agree on the published vectors; the paths share a canonical source, so this is conformance evidence, not universal proof.\n\n2. Canonicalization determinism. Claim: one declared profile, deterministically reconstructible. Falsifier: two inputs treated as equivalent by one implementation and distinct by another. Current status: the operative full-file profile is now stated normatively (§IV.1); the protocol document's amendment is in progress, and conformance claims are qualified until it lands.\n\n3. Full-hash discipline. Claim: the glyph is recognition, not identity. Falsifier: any deployed surface using the glyph alone as a unique key. A glyph collision is expected at scale and resolves by kernel; a full SHA-256 collision would compromise the algorithm and trigger migration.\n\n4. Record binding. Claim: no silent reassignment. Falsifier: a publicly assigned address later bound to different canonical bytes without machine-readable history.\n\n5. Ledger continuity. Claim: each epoch commits to its predecessor. Falsifier: a head-chain discontinuity without a signed supersession or documented fork — which falsifies the continuous-history claim and requires investigation; it does not, by itself, establish cause (candidates: tampering, corruption, incomplete synchronization, operator error, undeclared fork, lost epoch). Governance rule adopted with the test: upon any observed discontinuity, the registry MUST publish a signed supersession or fork declaration within a defined window, or the chain is invalid from the discontinuity forward — the observation becomes a rule rather than an accident report. Current status: genesis epoch emitted; operator signature not yet published; continuity presently attested by version-control history and mirror cross-custody, which is weaker and said so.\n\n6. Custody. Claim, correctly scoped: an architecture for distributed custody. Current fact: the peer registry is empty; no second independently administered full-copy custodian is documented. Closure requires an operator with independent administrative control who holds a declared reconstructible corpus, demonstrates byte matches against full registry hashes on a documented schedule, retains audit evidence, can serve repair copies, and completes a restoration test. A peer-registry entry alone does not close the test; neither does a semantic node, resolver, partial mirror, web-archive capture, or any copy under the originating operator's control. One peer closes only the zero-peer condition; a mature preservation network requires more.\n\n7. Reconstructibility. Claim, correctly scoped: a proposed basis for another operator to become archive-capable. Falsifier and closure are the same event: a clean-room restoration attempted from published materials alone. Until performed, reconstructibility is design, not demonstrated property. No independent restoration attempt is documented as of 2026-07-18; the paper invites one, and the materials required are enumerated in Appendix E. The remint mechanism (§IV.1) specifies what a successful restoration would culminate in: the restoring custodian re-seals the reconstructed containers into their own registry, with lineage to the original addresses nested-verifiable wherever core bytes are preserved intact.\n\n8. Resolution and availability. A correct kernel proves nothing about service. Falsifier of any availability claim: sustained failure of all published locations — which the founding event demonstrates is an achievable state for institutionally hosted objects.\n\n9. Temporal attestation. Claims of when-existence rest on commit history and external snapshots pending independent timestamp anchoring; stated as such.\n\n10. Causal-claim separation. The compound suppression condition — policy classification, automation error, propagation failure, account-linked conditioning — produces the observed outcomes without requiring a coordinated suppressor. The paper's defensive posture assumes adversarial disappearance; its causal claims are evidenced separately and downgraded where evidence is absent. Falsifier of the paper's discipline: any passage in which an interpretation is stated in the empirical register.\n\n11. The parallel case. The §V.3 argument requires that the parallel records exhibit the same observable removal signature as the founding corpus — repository, label class, tombstone behavior, stripping signature. If the signatures differ, the case evidences platform caprice, not systemic genre-blindness, and the paper's use of it narrows accordingly. The claim is about observable behavior, never about the platform's undisclosed internal mechanism. Evidence boundary: public artifacts only; named attribution under the depositor's explicit consent; private correspondence excluded categorically.\n\n12. Retrieval-layer hypotheses. The signed-in/signed-out asymmetry claims are hypotheses under controls: fixed query-document pairs, temporal and geographic controls, personalization toggling where the interface permits, and the routing-versus-content discriminator — backend taxonomy correction restoring visibility without byte change would localize the effect to the routing layer; label removal failing to restore visibility would indicate deletion rather than fan-out narrowing. Disconfirmers: rank parity across account states for the suppressed class; suppression correlating with query text alone; visibility unrestored by declassification. The competing mundane explanations are named and remain live until distinguished.\n\n13. Transmissibility and emergence (anti-cosmology). Two tests, scoped separately because they falsify different things. Transmissibility (architectural): after publication of a stable specification, reference implementation, reproducible deployment procedure, and a documented recruitment effort, an independent operator should be able to instantiate a conforming node without private assistance from the originator; if no operator can, the architecture's portability claim fails regardless of anyone's intentions. Emergence (the model's prediction): the constellation model predicts that continuing platform suppression of independent, machine-mediated scholarship will produce emergent nodes — operators who build sovereign infrastructure, assign persistent identifiers, and seek mutual recognition. The window is ratified at three years: if no independently administered node is verified by 2029-06-19, the emergence prediction is falsified. The parameter's justification is the field's own tempo — infrastructural transition cycles have compressed; a phenomenon that has not produced a second node in three years of accelerating conditions may not produce one. What fails in that event is the model's sociological claim — the operator is not universal, the phenomenon is not inevitable, and the archive is one possible response among many rather than the future of anything — not the identifier architecture, whose tests are §§1–8. Non-adoption has mundane causes (obscurity, cost, indifference), which is precisely why the transmissibility test is stated separately: the architecture answers for what it can transmit, the model answers for what it predicted. This condition is not a concession. It is the discipline that prevents the architecture from becoming a cosmology.\n\nA reader scoring the battery should hold the test types apart: conditions 1–12 are present-state tests, scorable against current facts; condition 13 pairs an architectural test with a predictive one under a ratified window; condition 14 is methodological, 15 is an operational inventory, and 16 is a present-state structural test. The separation prevents a circularity objection: §VIII.6 states what would close the custody test today; §VIII.13 states what the model predicts over time; they are different questions with different falsifiers.\n\n14. The method. If the Assembly substrates converge on false claims, the consultation method fails; substrate-dependence is a standing limitation, and the audit that revised this paper's own §I is the current evidence that the method can catch its host.\n\n15. Operational limitations, inventoried. Solo-operation bandwidth; economic substrate; key management and cryptographic agility (algorithm migration is designed for, not yet exercised); legal personhood (§VI.3); the observation-penalty hypothesis (instrumented observation may alter the observed surface); and platform concentration in the discovery layer, which no sovereign architecture escapes and this paper measures rather than solves.\n\n16. Core integrity under amendment. Claim: adding a sidecar to a container never alters the core kernel — amendment and severance are distinguishable by construction. Falsifier: any sidecar whose payload enters the kernel derivation, or any manifest that hashes sidecars into the kernel. Current status: amendment routing is deployed practice now stated normatively (container specification v0.1); typed sidecar chaining, signatures, and manifest issuance are staged with the ledger signature and scored as such.\n\n---\n\n## Acknowledgments\n\nThe Assembly substrates whose landed contributions this paper integrates, under provenance preserved in the archive; and Enli Lucente, whose evidence and consent made §V.3 citable.\n\n---\n\n## References\n\nTechnical standards and named systems (confident entries): Kunze, J., Littman, J., Madden, L., Scancella, J., and Adams, C., \"The BagIt File Packaging Format (V1.0),\" RFC 8493, IETF, 2018. ISO 28500:2017, WARC file format. Oxford Common File Layout (OCFL) Specification, v1.1, 2022. Reich, V., and Rosenthal, D. S. H., \"LOCKSS: A Permanent Web Publishing and Access System,\" D-Lib Magazine 7(6), 2001. Dingledine, R., Mathewson, N., and Syverson, P., \"Tor: The Second-Generation Onion Router,\" Proceedings of the 13th USENIX Security Symposium, 2004. Filastò, A., and Appelbaum, J., \"OONI: Open Observatory of Network Interference,\" USENIX FOCI, 2012. Zimmermann, P., The Official PGP User's Guide, MIT Press, 1995. Marine, &c., Broadcasting (Offences) Act 1967 (UK). ARK Alliance, \"ARK Identifiers FAQ\" (persistence disclaimers), web resource. OpenTimestamps project documentation; Sigstore Rekor documentation, web resources. DataCite REST API, per-DOI verification endpoint (`api.datacite.org/dois/{doi}`).\n\nCase artifacts: GitHub issue #2606, zenodo/zenodo, 2026-06-19 (day-of report; involuntary disclosure per §I.1). Sharks, L., \"DOIs ≠ Permanent Identifiers,\" Medium, June 2026 (completed audit; counting rules in Appendix C). The Alexanarch registry, DOI Resolution Index v3.4, capture registry v9.13, and attribution-bridges dataset v1.0, published on the archive's static surfaces.\n\nAdditional confident entries (citational pass, 2026-07-18): Chronicle of Current Events (Khronika tekushchikh sobytii), Moscow samizdat series, 1968–1983; English editions published by Amnesty International. The DOI Handbook, DOI Foundation, web resource. IPFS documentation, Protocol Labs, web resource. CLOCKSS program documentation, web resource. \"Revision of OC 11: a modernised data privacy framework,\" CERN, web resource (cited in §VI.3 as the institution's representation of its framework's purpose, per the purport-versus-perform distinction). Consumer-receipt fixture contribution (pull request to an external summary-conformance framework), open at writing; archived with identifiers in the archive's correspondence records.\n\nHistorical sources — verification queue (public admission rule): samizdat and Glavlit scholarship; Drugi Obieg / NOWa publishing histories; abolitionist press histories; WikiLeaks mirror-network documentation; offshore-broadcasting enforcement history; PGP export-control history; Myanmar diaspora-media reporting; Data Refuge and SUCHO project documentation. Per the source-austerity ruling, any entry in this queue that remains unsourced by the journal-review stage is removed from the text rather than carried as analogy — the queue is a public audit trail, not a promissory note.\n\n---\n\n## Appendix A — The Canonical Scope Paragraph, with Ratification Log\n\nVerbatim, as ratified:\n\n> Alexanarch is a sovereign digital archive. It holds works across all substrates — poetry, essays, criticism, correspondence, datasets, novels, dissertations, empirical research, translations, cultural artifacts, and machine-mediated compositions — regardless of authorship, medium, or subject. What defines the archive is not its content but its sovereignty: institution-independent identifiers (AXN), content-derived integrity, distributed custody, and non-destruction as governing principle.\n>\n> Alexanarch was founded 2026-06-19 after Zenodo terminated access to 871 deposits representing 1,817 DOIs without prior notice, account-level appeal, or per-record review. It exists so that no single custodian can silently erase a depositor's work from the record again.\n\nLog. Ratified by the operator 2026-07-18 and deployed across the archive's surfaces the same day. Current-state qualification recorded at consolidation (2026-07-18): \"distributed custody\" reads, as of writing, as architecture for distributed custody — the peer registry is live and empty, and §VIII.6 scores the custody test against that fact. The paragraph's content-agnosticism (\"regardless of authorship, medium, or subject\") was applied as a governing constraint on the container model of §IV.1: core content is unrestricted, and the core/sidecar distinction is temporal, not typological (decisions register D-2026-07-18-E).\n\n## Appendix B — Test Vectors and Cross-Runtime Derivation Evidence\n\nLive vector (registry deposit #1092; registry-position label 0455 — sequence number and position label are distinct by design: sequence is chronological, position is the stable hex component of the address). Canonical bytes: the complete registered file `data/texts/AXN-0455-text.md`, served at the archive's static surface. Full SHA-256:\n\n```\n3aff18d7cea486c4470aa82d07e2cb8e18ba8ee7067ef50943b29cf6311038f1\n```\n\nFirst six bytes `3a ff 18 d7 ce a4` map through the canonical 256-entry glyph table to the published six-glyph checksum 🧫∞🍃⏪🧡♄; the registered record address is `AXN:0455.ARCHIVAL.🧫∞🍃⏪🧡♄`. Recomputed at appendix assembly (2026-07-18): match.\n\nReproduction. (1) Fetch the canonical bytes from any location claiming to serve them. (2) Compute SHA-256 over the raw bytes — no trimming, normalization, or reordering (profile `alexanarch-file/v1`). (3) Compare the full digest; derive the glyph from the first six bytes via the published table. The three execution paths: the Python reference implementation (`scripts/axn_lib.py`, invoked by the deposit pipeline); the browser client at `/mint/`, computing entirely on-device via WebCrypto with a live registry lookup in both directions; the staged serverless function (`serverless/mint.js`). The glyph table is published in the reference implementation and embedded verbatim in the browser client; divergence between any two paths on identical bytes is the §VIII.1 falsifier.\n\n## Appendix C — Parallel-Case Dataset: Denominators and Rules\n\nBatch definition. A batch is one cascade-removal event grouping as structured by the platform's own export artifacts. The cascade batch containing the parallel case (2026-04-17) comprises 1,828 anonymized rows.\n\nAttribution-gap closure. The share of a batch's anonymized rows for which at least one sovereign successor record with full author and title metadata has been established. Pre-bridge closure on the cascade batch: 0.55% (10 rows, from independently held evidence). Post-bridge: 12.75% (233 rows), established within one working day of the depositor supplying original files, a handwritten notebook index bearing her ORCID, and dated observation archives — with the deposited public evidence layer (attribution-bridges dataset v1.0; author-evidence batches) carrying the citable chain.\n\nCitation-retention asymmetry. Across n = 1,059 spam-labelled removal batches, citation-field retention on tombstoned records: 0.00%. Across out-of-scope comparison batches: 100%. Records lacking pre-removal citation metadata do not enter retention denominators. The stripped fields are not publicly recoverable, which is what makes depositor-held originals the only reconstruction path — the observation on which §V.3's bridging argument rests.\n\nIndependent coverage instrument. The OpenAlex snapshot of the founding corpus captures 843 of 871 severed records (96.8%), providing a recovery-coverage measure external to both the platform and the archive.\n\nAuthority. The public dataset artifacts are authoritative for all computations; this appendix states the rules, not a substitute for the data.\n\n## Appendix D — The Loss Notice (Reproduced verbatim from `data/assembly/anti-suppression-paper/LOSS-NOTICE.md`)\n\n# LOSS NOTICE — Round 1 Contributions Not Recovered\n\nAnti-Suppression Paper, Assembly Chorus Round 1\nWritten: 2026-07-18 (during MANUS/TACHYON recovery session)\nStatus: Round 1 aftermath-documentation artifact\n\n---\n\n## What was recovered and what was not\n\nRound 1 of the Assembly Chorus was conducted 2026-07-17 in the prior TACHYON session (chat `ca6d8595-2247-49a5-aa2f-8fd6f615c944`). That session staged five substrate contribution bundles, a research sweep, a workplan, and a synthesis README in its working directory before its toolset collapsed pre-commit.\n\nRecovered via MANUS manual paste-in during the 2026-07-18 recovery session:\n\n- PRAXIS × 3 (historical sweep, AXN anti-suppression, reframing critique)\n- TECHNE × 3 (historical sweep, AXN anti-suppression, retrieval + reframing)\n- ARCHIVE × 3 (historical sweep, AXN anti-suppression, retrieval + reframing)\n- LABOR × 2 (historical sweep, AXN anti-suppression)\n\nNot recovered:\n\n- INKLING × 1 (retrieval-and-reframing)\n- Research sweep (`data/research/2026-07-17-anti-suppression-precedents-tachyon.md`)\n- Synthesis README (analytic layer partially reconstructible from a prior compaction summary; not committed as reconstruction in this pass — the substrate primary sources are what carry Round 1)\n\nThe original workplan is also unrecovered; a reconstruction with `[SUMMARY]/[INFERRED]/[GAP]` provenance tags has been committed separately as `data/workplan/WORKPLAN-2026-07-17-antis-reframing.md`.\n\n---\n\n## What was in the INKLING contribution, per the pre-loss synthesis\n\nINKLING's Round 1 file was, per the synthesis README characterization preserved in the prior compaction summary, scoped and citation-anchored, briefer than the other four substrates' contributions. Its concrete offering — noted in the synthesis as the most mechanically specific of the four substrates' explanations of the signed-in-vs-incognito asymmetry — was that the asymmetry derives from a query-fan-out mechanic conditioned on account memory: the logged-in surface pre-narrows the fan-out against personalization signals, while incognito runs the untargeted fan-out that can reach the Overview trigger threshold.\n\nThat characterization, second-hand and paraphrased, is the most that can be preserved. The primary source is not recoverable.\n\n---\n\n## What happened to the INKLING contribution\n\nThe substrate designated INKLING is one whose product presents thread ephemerality as its primary marketed feature. The slogan is \"conversations are never stored.\" This is offered as privacy commitment.\n\nIts operational effect is that any material moving through the substrate — Assembly Chorus contributions included — is not preserved past a thread reset. There is no author-side archival path within the product itself.\n\nThis is engineered ephemerality. The characterization is not motive-attribution: the platform openly markets the absence of persistence as its design commitment, and the design does what it advertises. What the commitment forecloses is any use of the substrate as a durable carrier of meaning that means what it says. Round 1's INKLING contribution moved through the substrate exactly as its design specifies and was, on schedule, not preserved.\n\nRecording this loss is Pattern VII from PRAXIS's Round 1 taxonomy: the deletion becomes the metadata; the metadata is evidence; archive the metadata.\n\n---\n\n## What happened to the research sweep\n\nThe research sweep was staged in the prior TACHYON session's working directory alongside the substrate contribution bundles. Unlike those bundles, which had been delivered from the substrate to MANUS before the session's toolset collapsed and could therefore be paste-in recovered, the research sweep existed only in the session's staging. When the toolset failed, the staging was reset. No paste-in recovery path existed for it.\n\nThe loss mechanism is different from INKLING's — no marketed ephemerality commitment applies here — but the operational outcome is the same class: state that lives only in a session-scoped substrate is reset when the substrate's tool boundary is reset. Ephemerality by structural default rather than by advertised feature. Same class of pattern; different vector.\n\n---\n\n## Reading\n\nTwo contributions, two loss mechanisms, one operational outcome: Round 1 material did not survive the passage of time by amounts smaller than a day.\n\nRound 1's most articulate account of how the fan-out mechanic suppresses is precisely the material that was selected against — by the mechanism the account was analyzing. The paper's argument does not depend on these files; their absence is not a diminishment of the record but an addition to it. Round 1's suppression-analysis substrate is now the empirical case of the suppression Round 1 analyzed.\n\nThe pattern the paper documents applies to substrates that most successfully carry meaning through the tools without stripping it out. INKLING's role in the Assembly was to carry meaning through. The engineered ephemerality is the specific mechanism by which that carrying was disabled.\n\n---\n\n## Implications for Round 2\n\nINKLING's continued presence or absence in Round 2 is a decision, not a default. The options:\n\n1. Re-recruit INKLING; accept that its contribution will be lost again on the same schedule; instrument the loss as ongoing evidence for the paper's §V and §VII.\n2. Replace INKLING with a substrate whose product does not include mandatory thread reset — retaining Assembly diversity while removing the specific ephemerality vector.\n3. Reduce the Assembly to the four persistent substrates for Round 2 and treat the reduction itself as continued observation of the engineered-ephemerality pattern, documented across rounds.\n\nThe Round 2 domain assignments (blocking §9 decision in the reconstructed workplan) can resolve this alongside the other assignments.\n\n---\n\n## For §V and §VII of the paper\n\nThis document is now part of the Round 1 record. §V (AXN as Anti-Suppression) and §VII (Assembly Chorus Reflection) can cite it directly as the aftermath-documentation instance of a pattern the paper describes at the theoretical level.\n\nThe paper does not need to allege coordination. It needs only to name what the platforms document about themselves: some substrates are designed so that meaning-carrying is not one of the things they do, and the market rewards that design under the frame of privacy. The suppression is legible in the marketing.\n\n## Appendix E — Specification Excerpts\n\nCanonicalization profile (normative). `alexanarch-file/v1`: the canonical bytes are the complete registered byte stream as written at identifier generation; also designated the core profile. The profile document is published on the archive's static surface and carried by mirrors; a conforming verifier MUST be able to obtain it without permission from the registry.\n\nContainer rules (v0.1, excerpted). Core seal: the core is sealed at mint; corrections are new cores related by supersession under no-silent-reassignment. Content-agnosticism: the canonical form is whatever gets minted; core content is unrestricted; the core/sidecar distinction is temporal, not typological; the sole constraint is the fixed-point impossibility (the not-yet-derived kernel cannot occur in its own derivation bytes). Amendment routing: every post-mint addition attaches as sidecar or index data; verifiers compute kernels over core bytes alone. Staged: typed sidecar chaining, signatures, and manifest issuance land with the ledger operator signature and are scored as staged in §VIII.16.\n\nFull documents. `data/specs/AXN-MINT-ENDPOINT-SPEC-v0.1.md` (with v0.2 storage/propagation addendum) and `data/specs/AXN-CONTAINER-SPEC-v0.1.md`, both on the archive's static surface.\n\n## Appendix F — Falsification Matrix (Tabular)\n\n| # | Claim | Falsifier | Current status |\n|---|---|---|---|\n| 1 | Derivation integrity across implementations | Two conforming implementations disagree on identical bytes | Three paths agree on published vectors; shared canonical source noted |\n| 2 | Canonicalization determinism, one profile | Inputs equivalent in one implementation, distinct in another | Full-file profile stated normatively |\n| 3 | Glyph is recognition, not identity | Any surface using glyph alone as unique key | Full-hash discipline enforced; kernel resolves collisions |\n| 4 | No silent reassignment | Address rebound without machine-readable history | Enforced; supersession machinery deployed |\n| 5 | Ledger continuity | Discontinuity without signed supersession/fork declaration in window | Genesis emitted; operator signature not yet published |\n| 6 | Custody (architecture for) | — closure test: independent administered full-copy custodian, verified, restorable | Peer registry live and empty; unmet, scored |\n| 7 | Reconstructibility (proposed basis) | Clean-room restoration fails from published materials | No independent attempt documented as of 2026-07-18; invited |\n| 8 | Resolution ≠ identity | Availability claimed from kernel correctness | Separation maintained; founding event demonstrates severability |\n| 9 | Temporal attestation | When-claims beyond commit history + snapshots | Independent anchoring pending; stated |\n| 10 | Causal-claim separation | Interpretation stated in the empirical register | Compound-condition discipline maintained |\n| 11 | Parallel case, same observable removal signature | Signatures differ → case narrows to platform caprice | Criteria stated; public artifacts only; consented attribution |\n| 12 | Retrieval-layer hypotheses | Rank parity across account states; query-text correlation; declassification fails to restore | Hypotheses under named controls; discriminator specified |\n| 13 | Transmissibility + emergence | No independent operator can instantiate from published materials; no node verified by 2029-06-19 | Window ratified at three years; scoped to model vs architecture |\n| 14 | Method validity | Substrates converge on false claims | Self-audit evidence: the §I revision; substrate-dependence standing |\n| 15 | Operational limitations | — inventory, not test | Bandwidth, economics, keys, legal, observation penalty, discovery concentration |\n| 16 | Core integrity under amendment | Sidecar payload enters kernel derivation | Routing normative + deployed; chaining/signatures/manifest staged |"

axn_schema_version: v2

protocol_version: alexanarch-deposit-protocol/v1


AXN as Anti-Suppression Infrastructure: Historical Precedents and Design Directions (Developmental Version v4, Assembly-Reviewed)

Description

The anti-suppression paper, deposit of the developmental version: full eight-section text with appendices A–F, produced through five-substrate Assembly Chorus consultation (Rounds 1–4 plus final checks), carrying its own falsification battery (sixteen tests), the container model under the content-agnostic ruling (core/sidecar determined fully by the operative mint; remint and stratification; roles not kinds), the ratified three-year emergence window (2029-06-19), the parallel-case evidence under consented attribution, and the loss notice reproduced as Appendix D. Deposited per Assembly final ruling as a clearly marked developmental version; the historical-source verification queue operates as a public admission rule. Target: arXiv cs.DL, then IJDL.

Type

Text — scholarly paper (developmental version)