TEST Timestamp servers used for service evaluations

 

The timestamps created by the TEST environment are for testing only. The test timestamps cannot be used as trusted signatures because the signing keys and clocks are not secured.

 

You will need an account to access the test environment. You can create a free evaluation account, additional technical information is here.

 

Commonly you will need to download and install only the Root Certificate.  We have chosen for you to use the cryptology signature algorithm to use as:  NIST Recommended Elliptic-Curve.  Or, you can change that selection to either RSA or Brainpool. 

Part of your configuration is "where are the The Time Stamp robots located".  Software that supports standard timestamps (RFC3161) will want you to enter our Interneat addresses.  When using HTTP authentication and specify the address of the TSA server as:

http://tsatest1.digistamp.com/tsa
http://tsatest2.digistamp.com/tsa

 

A New Release of the TSA Service at end of 2016 has new Signature Algorithms (Elliptic Cruve NIST and Brainpool). These servers respond with timestamps as the upcoming release:

http://tsatest11.digistamp.com/tsa
http://tsatest12.digistamp.com/tsa

 

If you using IP-Based Authentication (instead of HTTP authentication) the the names above are changed like this:

"tsa"  becomes:  "ipauth/tsa"
Example:   http://tsatest12.digistamp.com/ipauth/tsa

Each of the Robots has unique Audit Certificate for issuing its timestamp signing keys, more information here. How the Chain of Trust is organized:

Robot Signatures

 

Choose 1 of the 3 alternative signature algorithms for a timestamp, the download selection below will name each by algorithm :

Multiple Robots are initialized over the years. Some Robots live in Dallas, others in Chicago and others at client locations. The download section below is organized by server names like TSATEST12, that represents an Internet address where at least one of these Robots is located.

Generally, you will need just one of the Root Test-CA certificates.

  ECC-NIST ECC-Brainpool RSA All algorithms
Root Test-CA certificate certificate certificate  
or, all certs for an algorithm bundled in PEM bundled in PEM bundled in PEM bundled in PEM
TSA Test 11 :        
Audit certificate certificate certificate  
Timestamp Regular
certificate certificate certificate  
Timestamp Long
certificate certificate certificate  
TSA Test 12 :        
Audit certificate certificate certificate  
Timestamp Regular
certificate certificate certificate  
Timestamp Long
certificate certificate certificate  

 

Legacy X.509 Certificates – systems being replaced late 2016:

 

  RSA
Root Test-CA certificate
  bundled in PEM
TSA Test 1:  
Audit certificate
Timestamp
certificate
TSA Test 2:  
Audit certificate
Timestamp
certificate

CSR - Certificate Signing Requests if you have an internal CA for integration:

 

  ECC-NIST ECC-Brainpool RSA
Root Test-CA CSR.p10 CSR.pem CSR.p10 CSR.pem CSR.p10 CSR.pem
TSA Test 11 Audit CSR.p10 CSR.pem CSR.p10 CSR.pem CSR.p10 CSR.pem
TSA Test 12 Audit CSR.p10 CSR.pem CSR.p10 CSR.pem CSR.p10 CSR.pem