Sign in
← All matches
✅ Cryptographically verified · sealed pick #363

Mighty Mukuru Wanderers vs MAFCO

Super League · Malawi · 05 Jul 2026, 12:30 UTC

Final score
3 : 0
Result
Won
Pick
Mighty Mukuru Wanderers
Market
1x2
Model prob.
66.5%
Best price
1.67
Min odds
1.60
Stake factor
1.80

Proof this pick was locked in before kickoff

The pick was encrypted before kickoff and published the moment it was sealed to Telegram and GitHub, each carrying an independent timestamp. The encrypted batch is also anchored in Bitcoin — a public record nobody, including us, can alter or back-date. After the match the key is released; decrypting that exact pre-published message reveals the pick, proving it was fixed in advance, not cherry-picked.

Encrypted pick (AES-256-GCM)
LS/UlIKJArfWA+a/WIUL8ghMFdU/zEAhAL1LlsWR9AbJAIeLZXUhXjA2otrsfvqzMqM5f6wT1MhW1cVxT4CN2Bznyyks/anhODol1tZbEopqccjPigrw0jTUqqQpA88bAvLr1GVs20ouy899GCS0KJCe7IBLdd4M1efsT0FQVjke43/5rMGbnCYsqDKFcXzvvSyDaFus3+0CiAX+PXcNhEbD0qT56jfqWha2L+peUfjEqU90qbxyJ2Jwc7fFJnV2vCzNnxmvPZHhqP+DqF2N5xDjA2Tc6Q7zrp0k+13dOzD0yDIinhIif+xnZRcQAIi8T0jw0SStwi2oZB4wTj+9cr6InHKLgBlKrpwYcTpM+uYUYdsiObw=
key fingerprint sha256: 5fc84d9d82187106b6a2570537bd9130603a997803352a4f13218de3f47a5e44
Decrypt it & read the pick
Decryption key (released after the match)
6b3d9962f4147b8aac5644cecbe96b5082cb078c98e023f21d5487daa7190c9d
Decrypt in CyberChef →
Verify it yourself — paste both values, no install

The Encrypted pick above is base64( nonce[12 bytes] + ciphertext + tag[16 bytes] ), AES-256-GCM. Zero-install check: open your browser console (press F12Console), paste this, press Enter — it decrypts the exact pick shown above:

const blob = Uint8Array.from(atob("LS/UlIKJArfWA+a/WIUL8ghMFdU/zEAhAL1LlsWR9AbJAIeLZXUhXjA2otrsfvqzMqM5f6wT1MhW1cVxT4CN2Bznyyks/anhODol1tZbEopqccjPigrw0jTUqqQpA88bAvLr1GVs20ouy899GCS0KJCe7IBLdd4M1efsT0FQVjke43/5rMGbnCYsqDKFcXzvvSyDaFus3+0CiAX+PXcNhEbD0qT56jfqWha2L+peUfjEqU90qbxyJ2Jwc7fFJnV2vCzNnxmvPZHhqP+DqF2N5xDjA2Tc6Q7zrp0k+13dOzD0yDIinhIif+xnZRcQAIi8T0jw0SStwi2oZB4wTj+9cr6InHKLgBlKrpwYcTpM+uYUYdsiObw="), c => c.charCodeAt(0));
const key  = Uint8Array.from("6b3d9962f4147b8aac5644cecbe96b5082cb078c98e023f21d5487daa7190c9d".match(/../g).map(h => parseInt(h, 16)));
crypto.subtle.importKey("raw", key, "AES-GCM", false, ["decrypt"])
  .then(k => crypto.subtle.decrypt({ name: "AES-GCM", iv: blob.slice(0, 12) }, k, blob.slice(12)))
  .then(b => console.log(new TextDecoder().decode(b)));

Prefer a GUI? The orange button opens CyberChef pre-filled. Or split the parts yourself for any AES-256-GCM tool:

  • Algorithm: AES-256-GCM
  • Key (hex): 6b3d9962f4147b8aac5644cecbe96b5082cb078c98e023f21d5487daa7190c9d
  • IV / nonce (hex): 2d2fd494828902b7d603e6bf
  • Ciphertext (hex): 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
  • Auth tag (hex): 194aae9c18713a4cfae61461db2239bc

Any standard AES-256-GCM tool returns the exact same pick — the algorithm is a public standard.

How to verify the Bitcoin timestamp yourself

Bitcoin doesn't store the pick — it stores a 32-byte fingerprint (SHA-256) of the encrypted batch, via OpenTimestamps. That fingerprint is frozen in a public block nobody can alter or back-date. You can't spot it by eye on a block explorer (a block holds thousands of unrelated transactions) — you verify it with the .ots proof and any OpenTimestamps tool:

  1. Download the sealed batch file (.jsonl) and its proof (.ots) from GitHub.
  2. Drop both into opentimestamps.org (or run ots verify *.ots). It replays the proof and confirms the Bitcoin block and its UTC time.
  3. See it independently: block #956696 · anchoring transaction (its OP_RETURN holds the commitment). The block's Timestamp is when it became permanent.

Note: Bitcoin anchoring lands ~30–60 min after sealing, and a block's timestamp is miner-set (approximate). So the exact “before kickoff” proof is the seal time above — timestamped instantly by Telegram/GitHub — while Bitcoin is the independent, un-forgeable anchor of permanence.