{
  "draft": "draft-ietf-sidrops-signed-tal-16",
  "doc_id": "RFC9691",
  "title": "A Profile for Resource Public Key Infrastructure (RPKI) Trust Anchor Keys (TAKs)",
  "authors": [
    "C. Martinez",
    "G. Michaelson",
    "T. Harrison",
    "T. Bruijnzeels",
    "R. Austein"
  ],
  "format": [
    "XML",
    "TEXT",
    "HTML",
    "PDF"
  ],
  "page_count": "19",
  "pub_status": "PROPOSED STANDARD",
  "status": "PROPOSED STANDARD",
  "source": "SIDR Operations",
  "abstract": "A Trust Anchor Locator (TAL) is used by Relying Parties (RPs) in the Resource Public Key Infrastructure (RPKI) to locate and validate a Trust Anchor (TA) Certification Authority (CA) certificate used in RPKI validation.  This document defines an RPKI signed object for a Trust Anchor Key (TAK).  A TAK object can be used by a TA to signal to RPs the location(s) of the accompanying CA certificate for the current public key, as well as the successor public key and the location(s) of its CA certificate.  This object helps to support planned key rollovers without impacting RPKI validation.",
  "pub_date": "December 2024",
  "keywords": [
    "security",
    "cryptography",
    "X.509"
  ],
  "obsoletes": [],
  "obsoleted_by": [],
  "updates": [],
  "updated_by": [],
  "see_also": [],
  "doi": "10.17487/RFC9691",
  "errata_url": null
}