RFC Errata
RFC 8410, "Algorithm Identifiers for Ed25519, Ed448, X25519, and X448 for Use in the Internet X.509 Public Key Infrastructure", August 2018
Note: This RFC has been updated by RFC 9295
Source of RFC: curdle (sec)See Also: RFC 8410 w/ inline errata
Errata ID: 8297
Status: Verified
Type: Editorial
Publication Format(s) : TEXT
Reported By: Roman Donchenko
Date Reported: 2025-02-16
Verifier Name: Deb Cooley
Date Verified: 2025-04-03
Section 7 says:
-----BEGIN PRIVATE KEY----- MHICAQEwBQYDK2VwBCIEINTuctv5E1hK1bbY8fdp+K06/nwoy/HU++CXqI9EdVhC oB8wHQYKKoZIhvcNAQkJFDEPDA1DdXJkbGUgQ2hhaXJzgSEAGb9ECWmEzf6FQbrB Z9w7lshQhqowtrbLDFw4rXAxZuE= -----END PRIVATE KEY------
It should say:
(re-encoded with correct attribute OID, see notes)
Notes:
This encoded private key contains an attribute with OID "1 2 840 113549 1 9 9 20", which is not assigned to anything. Likely, the intent was to use "1 2 840 113549 1 9 20" (one fewer 9), which is pkcs-9-at-friendlyName from RFC 2985.
The same private key also appears in section 10.3.