Certification Authority (CA) Key Rollover in the Resource Public Key Infrastructure (RPKI), February 2012
- File formats:
- BEST CURRENT PRACTICE
- G. Huston
- sidr (rtg)
Discuss this RFC: Send questions or comments to firstname.lastname@example.org
This document describes how a Certification Authority (CA) in the Resource Public Key Infrastructure (RPKI) performs a planned rollover of its key pair. This document also notes the implications of this key rollover procedure for relying parties (RPs). In general, RPs are expected to maintain a local cache of the objects that have been published in the RPKI repository, and thus the way in which a CA performs key rollover impacts RPs. This memo documents an Internet Best Current Practice.
For the definition of Status, see RFC 2026.
For the definition of Stream, see RFC 8729.