ediverse Explore the platform

Spotlight PEPPOL BIS Billing 3.0 The EU e-invoicing mandate is here — France Sept 2026, Belgium Jan 2026, Germany 2025.

RFC 3161 TSA

The cryptographic proof-of-existence that underpins the evidentiary value of B2B documents.

Definition

The client sends a document's hash in a TimeStampReq; the TSA returns a TimeStampResp containing a signed token binding that hash to the reference time. These tokens underpin long-term signatures (XAdES/CAdES) and e-invoice retention.

Origin

Defined by IETF RFC 3161, "Internet X.509 Public Key Infrastructure Time-Stamp Protocol (TSP)", complemented by RFC 5816.

Example in context

<TimeStampResp><status>granted</status><timeStampToken>…</timeStampToken></TimeStampResp> — a TSA's response to a timestamp request.

  • XAdES — uses RFC 3161 tokens for its long-term levels.
  • X.509 — the certificate that signs the timestamp token.

Last updated: June 20, 2026