[Sidrops] Protocol Action: 'Resource Public Key Infrastructure (RPKI) Manifest Number Handling' to Proposed Standard (draft-ietf-sidrops-manifest-numbers-08.txt)
The IESG <iesg-secretary@ietf.org> Tue, 13 January 2026 17:21 UTC
Return-Path: <iesg-secretary@ietf.org>
X-Original-To: sidrops@ietf.org
Delivered-To: sidrops@mail2.ietf.org
Received: from [10.244.6.11] (unknown [4.156.85.76]) by mail2.ietf.org (Postfix) with ESMTP id 7D901A71D303; Tue, 13 Jan 2026 09:21:12 -0800 (PST)
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
From: The IESG <iesg-secretary@ietf.org>
To: IETF-Announce <ietf-announce@ietf.org>
X-Test-IDTracker: no
X-IETF-IDTracker: 12.55.0
Auto-Submitted: auto-generated
Precedence: bulk
MIME-Version: 1.0
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 7bit
Message-ID: <176832487244.1004010.4890524735497659966@dt-datatracker-5656579b89-r5kdq>
Date: Tue, 13 Jan 2026 09:21:12 -0800
Message-ID-Hash: UUIFJCXFAMFNKZMMGC2VOECWRILJRY3Y
X-Message-ID-Hash: UUIFJCXFAMFNKZMMGC2VOECWRILJRY3Y
X-MailFrom: iesg-secretary@ietf.org
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-sidrops.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: The IESG <iesg@ietf.org>, draft-ietf-sidrops-manifest-numbers@ietf.org, ggx@gigix.net, mohamed.boucadair@orange.com, rfc-editor@rfc-editor.org, sidrops-chairs@ietf.org, sidrops@ietf.org
X-Mailman-Version: 3.3.9rc6
Subject: [Sidrops] Protocol Action: 'Resource Public Key Infrastructure (RPKI) Manifest Number Handling' to Proposed Standard (draft-ietf-sidrops-manifest-numbers-08.txt)
List-Id: A list for the SIDR Operations WG <sidrops.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/sidrops/MCxA5N56R3xuusXsXquPE31uh-U>
List-Archive: <https://mailarchive.ietf.org/arch/browse/sidrops>
List-Help: <mailto:sidrops-request@ietf.org?subject=help>
List-Owner: <mailto:sidrops-owner@ietf.org>
List-Post: <mailto:sidrops@ietf.org>
List-Subscribe: <mailto:sidrops-join@ietf.org>
List-Unsubscribe: <mailto:sidrops-leave@ietf.org>
The IESG has approved the following document: - 'Resource Public Key Infrastructure (RPKI) Manifest Number Handling' (draft-ietf-sidrops-manifest-numbers-08.txt) as Proposed Standard This document is the product of the SIDR Operations Working Group. The IESG contact persons are Mahesh Jethanandani and Mohamed Boucadair. A URL of this Internet-Draft is: https://datatracker.ietf.org/doc/draft-ietf-sidrops-manifest-numbers/ Technical Summary The Resource Public Key Infrastructure (RPKI) makes use of signed objects called manifests. A manifest lists each file that an issuer intends to include within an RPKI repository, and can be used to detect certain forms of attack against a repository. Manifests include a "manifest number" (manifestNumber), which an issuer must increment whenever it issues a new manifest, and Relying Parties (RPs) are required to verify that a newly-retrieved manifest for a given Certification Authority (CA) has a higher manifestNumber than the previously-validated manifest. However, the manifestNumber field is 20 octets in length (i.e., bounded), and no behavior is specified for when a manifestNumber reaches the largest possible value. This document updates RFC 9286 by specifying issuer and RP behavior for this scenario. Working Group Summary No issue was raised against the specification during it devleoppement. Even if the number of support during the WGLC is not huge there were no objections in moving this document forward. Document Quality Two independent implementations were disclosed: - NLnet Labs, "Routinator", June 2024, <https://www.nlnetlabs.nl/projects/routing/routinator/>. - OpenBSD Project, "rpki-client", January 2024, <https://www.rpki-client.org/>. Personnel The Document Shepherd for this document is Luigi Iannone. The Responsible Area Director is Mohamed Boucadair.