RDAPify - Unified, Secure, High-Performance RDAP Client for Enterprise Applications

RDAPify unifies RDAP queries across all global registries (Verisign, ARIN, RIPE, APNIC, LACNIC) with robust security protection, exceptional performance, and an integrated developer experience. This isn't just another RDAP client — it's a complete platform for processing registration data securely.

Note: This project eliminates the need for traditional WHOIS protocol, while maintaining backward compatibility when needed.

🚀 Why RDAPify?

Direct RDAP queries are complex — each registry uses different formats, rate limits, and security procedures. Instead of reinventing the wheel for every project:

- Maintaining multiple WHOIS/RDAP implementations
- Manually handling registry differences
- Constant worry about SSRF vulnerabilities
- Unpredictable performance without caching
+ One unified solution, rigorously tested, production-ready

RDAPify intelligently addresses these challenges:

• ✅ Data Normalization: Consistent response regardless of source registry
• ✅ SSRF Protection: Prevent attacks on internal infrastructure
• ✅ Exceptional Performance: Smart caching, parallel processing, memory optimization
• ✅ Broad Compatibility: Works on Node.js, Bun, Deno, Cloudflare Workers
• ✅ GDPR-ready: Built-in tools for automatically redacting personal data

📦 Quick Installation

# Using npm
npm install rdapify

# Using yarn
yarn add rdapify

# Using pnpm
pnpm add rdapify

# Using Bun
bun add rdapify

⚡ Get Started in 30 Seconds

import { RDAPClient } from 'rdapify';

// Create a secure client with optimized defaults
const client = new RDAPClient({
  cache: true,          // Automatic caching (1 hour TTL)
  redactPII: true,      // Automatically redact personal information
  retry: {              // Smart retries for transient failures
    maxAttempts: 3,
    backoff: 'exponential'
  }
});

// Query a domain
const result = await client.domain('example.com');

console.log({
  domain: result.query,
  registrar: result.registrar?.name,
  status: result.status,
  nameservers: result.nameservers,
  created: result.events.find(e => e.type === 'created')?.date,
  expires: result.events.find(e => e.type === 'expiration')?.date
});

Output:

{
  "domain": "example.com",
  "registrar": "Internet Assigned Numbers Authority",
  "status": ["clientDeleteProhibited", "clientTransferProhibited", "clientUpdateProhibited"],
  "nameservers": ["a.iana-servers.net", "b.iana-servers.net"],
  "created": "1995-08-14T04:00:00Z",
  "expires": "2026-08-13T04:00:00Z"
}

🌟 Core Features

🔒 Enterprise Security

• Built-in SSRF Protection: Prevent queries to internal IP addresses or dangerous domains
• Certificate Validation: Reject insecure connections to RDAP servers
• Rate Limiting: Prevent service blocking due to excessive requests
• Secure Data Handling: PII redaction according to GDPR/CCPA requirements
• Full Audit Trail: Track all critical operations for compliance purposes

⚡ Exceptional Performance

• Advanced Caching: Supports In-memory, Redis, and geo-distributed caching
• Parallel Processing: Handle 1000+ domains in seconds
• Registry Discovery: Automatic IANA Bootstrap for finding the correct registry
• Offline Mode: Work with cached data during network outages
• Priority Queues: Ensure critical requests are processed first

🧩 Seamless Integration

• Full TypeScript Support: Strongly typed with embedded documentation
• Multi-environment Support: Works on Node.js (16+), Bun, Deno, Cloudflare Workers
• Interactive CLI: For quick queries and testing
• Web Playground: Try the library directly in your browser
• Pre-built Templates: For AWS Lambda, Azure Functions, Kubernetes, and more

📊 Advanced Analytics

• Customizable Dashboards: Track critical domains and assets
• Automated Reports: Schedule expiration alerts and important changes
• Pattern Detection: Identify suspicious registration behaviors or potential attacks
• Relationship Visualization: Understand complex ownership and registration networks

🏗️ Core Architecture

graph LR
A[Application] --> B(RDAP Client)
B --> C{Registry Discovery}
C -->|IANA Bootstrap| D[(Cache Layer)]
B --> E[Normalization]
E -->|JSONPath| F[Raw Responses]
F --> G[Unified Format]
G --> H[PII Redaction]
H --> I[Final Response]
D -->|Prefetching| C
style B fill:#4CAF50,stroke:#388E3C
style D fill:#FF9800,stroke:#F57C00
style G fill:#2196F3,stroke:#0D47A1

🛡️ Security as a Core Principle

We don't treat security as an add-on feature — it's fundamental to our design. RDAPify protects your applications from:

| Threat | Protection Mechanism | Criticality | |--------|----------------------|-------------| | SSRF | Domain validation, blocking internal IPs | 🔴 Critical | | DoS | Rate limiting, timeouts | 🟠 Important | | Data Leaks | PII redaction, no raw response storage | 🔴 Critical | | MitM | Mandatory HTTPS, certificate validation | 🟠 Important | | Data Injection | Schema validation, strict parsing | 🟠 Important |

Read our Security Whitepaper for deeper technical details and advanced scenarios.

📚 Comprehensive Documentation

RDAPify provides enterprise-grade documentation covering every scenario:

• Getting Started - Start in 5 minutes
• Playground - Try the library in your browser
• API Reference - Complete TypeScript documentation
• Security & Privacy - Enterprise security guide
• Integrations - Pre-built cloud platform templates
• Enterprise Guide - Production best practices
• Analytics - Dashboard and reporting recipes

→ View Full Documentation

🌐 Interactive Playground

No installation needed! Try RDAPify instantly in our Playground:

📊 Performance Benchmarks

Comparison with Alternatives (1000 queries)

| Library | Time (seconds) | Memory Usage | Avg Response Time | |---------|----------------|--------------|-------------------| | RDAPify | 3.2 | 85 MB | 1.8 ms | | rdap-client | 42.7 | 310 MB | 214 ms | | node-rdap | 58.1 | 420 MB | 290 ms | | whois-json | 196.5 | 580 MB | 982 ms |

Benchmarks run on Node.js 20, Intel i7, 32GB RAM, 1Gbps connection. Includes caching benefits.

👥 Community & Support

RDAPify is an open source project supported by organizations and developers worldwide:

• Matrix/Element - Live chat with developers
• GitHub Discussions - Questions and ideas
• Weekly Office Hours - Live sessions every Thursday
• Enterprise Support - SLA-backed support for businesses

🤝 Contributing

We welcome contributions! Whether you're a:

• Developer wanting to fix bugs or add features
• Writer improving documentation
• Tester reporting issues
• Security engineer reviewing code

Start by reading our Contribution Guide and Code of Conduct.

🏢 Enterprise Adoption

The following companies use RDAPify in production systems:

Using RDAPify at your company? Let us know to be added to our list.

📜 License

RDAPify is licensed under the MIT License — free for personal and commercial use with minimal restrictions.

🙏 Acknowledgements

We thank the global RDAP community, IANA teams, and Regional Internet Registry (RIR) developers for their dedicated work making the internet more transparent and secure.

Note: RDAPify is an independent project not affiliated with any domain registry or official internet authority. All trademarks and products mentioned are property of their respective owners.

© 2025 RDAPify — Built for enterprises that don't compromise on quality and security.
Security Policy • Privacy Policy • Contact Us