HTTP timestamped signatures services have been around for ages, as they are an essential part of Microsoft's Authenticode code-signing system. The details of how that works are at http://msdn.microsoft.com/en-us/library/bb931395(VS.85).aspx. The existing services may well be applicable to your needs. - Ben Hutchings