Lib.rs

Cryptography
#sigstore #timestamp #asn-1 #tsa #signature #client-for-sigstore #3161 #certificate-signature

sigstore-tsa

RFC 3161 Time-Stamp Protocol client for Sigstore

Owned by Wolf Vollprecht, Bas Zalmstra.

10 releases (5 breaking)

0.6.3 Feb 6, 2026
0.6.1 Jan 26, 2026
0.6.0 Dec 8, 2025
0.4.0 Nov 28, 2025

#424 in Cryptography

Download history 40/week @ 2025-11-26 69/week @ 2025-12-03 320/week @ 2025-12-10 68/week @ 2025-12-17 234/week @ 2025-12-24 81/week @ 2025-12-31 437/week @ 2026-01-07 503/week @ 2026-01-14 362/week @ 2026-01-21 440/week @ 2026-01-28 1095/week @ 2026-02-04 705/week @ 2026-02-11

2,701 downloads per month
Used in 5 crates (4 directly)

BSD-3-Clause

175KB
3.5K SLoC

sigstore-tsa

RFC 3161 Time-Stamp Protocol client for sigstore-rust.

Overview

This crate implements the Time-Stamp Protocol as specified in RFC 3161. It provides functionality to request timestamps from Time-Stamp Authorities (TSAs) and verify timestamp responses.

Timestamps provide trusted third-party evidence of when a signature was created, which is essential for verifying signatures after the signing certificate has expired.

Features

  • Timestamp requests: Create and send RFC 3161 timestamp requests
  • Response parsing: Parse and validate timestamp responses
  • Timestamp verification: Verify timestamp tokens against TSA certificates
  • Multiple TSAs: Built-in support for Sigstore TSA and FreeTSA

Usage

use sigstore_tsa::TimestampClient;

// Get a timestamp from the Sigstore TSA
let client = TimestampClient::sigstore();
let timestamp_token = client.timestamp_sha256(&digest).await?;

// Or use the convenience function
let token = sigstore_tsa::timestamp_sigstore(&digest).await?;

ASN.1 Types

The crate provides ASN.1/DER types for RFC 3161 structures:

  • TimeStampReq - Timestamp request
  • TimeStampResp - Timestamp response
  • TstInfo - Timestamp token info
  • Asn1MessageImprint - Hash algorithm and digest (ASN.1 format)

Used by:

License

BSD-3-Clause

Dependencies

~96MB
~2M SLoC