{"draft":"draft-ietf-lamps-rfc4210bis-18","doc_id":"RFC9810","title":"Internet X.509 Public Key Infrastructure -- Certificate Management Protocol (CMP)","authors":["H. Brockhaus","D. von Oheimb","M. Ounsworth","J. Gray"],"format":["HTML","TEXT","PDF","XML"],"page_count":"116","pub_status":"PROPOSED STANDARD","status":"PROPOSED STANDARD","source":"Limited Additional Mechanisms for PKIX and SMIME","abstract":"This document describes the Internet X.509 Public Key Infrastructure\r\n(PKI) Certificate Management Protocol (CMP).  Protocol messages are\r\ndefined for X.509v3 certificate creation and management. CMP provides\r\ninteractions between client systems and PKI components such as a\r\nRegistration Authority (RA) and a Certification Authority (CA).\r\n\r\nThis document adds support for management of certificates containing\r\na Key Encapsulation Mechanism (KEM) public key and uses EnvelopedData\r\ninstead of EncryptedValue. This document also includes the updates\r\nspecified in Section 2 and Appendix A.2 of RFC 9480.\r\n\r\nThis document obsoletes RFC 4210, and together with RFC 9811, it also\r\nobsoletes RFC 9480. Appendix F of this document updates Section 9 of\r\nRFC 5912.","pub_date":"July 2025","keywords":["CMP","HTTP","Certificate management","PKI"],"obsoletes":["RFC4210","RFC9480"],"obsoleted_by":[],"updates":["RFC5912"],"updated_by":[],"see_also":[],"doi":"10.17487\/RFC9810","errata_url":null}