rappipay.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-15 · ok HTTP/1.1 200 2174 ms crawled 2026-05-08

US · 13.33.235.100 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

sector tech type homepage

HTML metadata

Title: Rappipay

Technology

CDN: Amazon CloudFront
Server: AmazonS3

Registration

Registrar

GoDaddy.com, LLC

Created

2018-04-05

Expires

2029-04-05 1051 days left

Updated

2026-03-05

Name servers

ns-1231.awsdns-25.org
ns-1847.awsdns-38.co.uk
ns-564.awsdns-06.net
ns-97.awsdns-12.com

DNS records live

NS

ns-1231.awsdns-25.org
ns-1847.awsdns-38.co.uk
ns-564.awsdns-06.net
ns-97.awsdns-12.com

MX

Show 7 MX records

1 aspmx.l.google.com
10 alt3.aspmx.l.google.com
10 alt4.aspmx.l.google.com
10 aspmx2.googlemail.com
10 aspmx3.googlemail.com
5 alt1.aspmx.l.google.com
5 alt2.aspmx.l.google.com

TXT

Show 4 TXT records

facebook-domain-verification=5jowhtew04tlzc8tb8ditj9oijx9g9
google-site-verification=1VtajmITBbAgl8egbt8LyUrHMnAsxDvx4H3qKjNxD_A
google-site-verification=bXHpsvhpDGvMDrVZHMXhznoLCAP5oQEU56e7RGllkPQ
google-site-verification=wveVou3uHslBSXrTJRiqnwbGCyN29XB29EfE158UQYw

Email authentication partial

SPF

v=spf1 include:spf.mandrillapp.com include:_spf.google.com ~all

softfail (~all)

DMARC

v=DMARC1; p=none;

policy: none (monitoring only)

DKIM

s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0zeoIt711bkdgFfEx6xfndxHs0/QSUTVh2E5spcpmc/G33k4MAiZaflGX7fTi4uCYxIo0CW7tVb7o5nY1J…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDDF7s8Zoqv3ywxlhn09Ka7m7aFRUe+VM9Q2OMgyAZNlA6DBazcNhOHofuoPTi8QqXwXoDAvsxHsQW7WaLzZVh8Qb…

selectors probed

Certificate (current)

Amazon RSA 2048 M01

from 2026-03-11 to 2026-09-25

Expires in 128 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.rappipay.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options
referrer-policy
permissions-policy

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources

Header values

referrer-policy: strict-origin-when-cross-origin
x-frame-options: SAMEORIGIN
permissions-policy: accelerometer=(), camera=(), geolocation=(self "https://rappipay.com"), gyroscope=(), magnetometer=(), microphone=(), payment=(), usb=()
x-content-type-options: nosniff
content-security-policy: default-src * data: mediastream: blob: filesystem: about: ws: wss: 'unsafe-eval' 'wasm-unsafe-eval' 'unsafe-inline'; script-src * data: blob: 'unsafe-inline' 'unsafe-eval'; connect-src * data: blob: 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src * data: blob: ; style-src * data: blob: 'unsafe-inline'; font-src * data: blob: 'unsafe-inline'; frame-ancestors * data: blob: 'unsafe-inline';
strict-transport-security: max-age=31536000

Links to (1)

rappipay.co×2

Linked from (2)

rappi.com.co×2
smartupdigital.com×2