I was using the wording of OP who seems to be talking about tokens. The service asks the trusted entity if the token is valid, the trusted entity deletes the token after the first time.
Comment on Mastodon says it doesn't 'have the means' to comply with age verification laws
Zwuzelmaus@feddit.org 6 days agoYou cannot make a certificate “single use” (except if it exists only inside a closed system).
homoludens@feddit.org 6 days ago
amju_wolf@pawb.social 5 days ago
The website generates a random value, your government signs a cert for that value. That’s what makes it single use and zero trust.