Technical Summary
This document defines a Cryptographic Message Syntax (CMS) profile
for a general purpose listing of checksums (a 'checklist'), for use
with the Resource Public Key Infrastructure (RPKI). The objective is
to allow an attestation, in the form of a listing of one or more
checksums of arbitrary digital objects (files), to be signed "with
resources", and for validation to provide a means to confirm a
specific Internet Resource Holder produced the Signed Checklist. The
profile is intended to provide for the signing of an arbitrary
checksum listing with a specific set of Internet Number Resources.
Working Group Summary
There is good consensus to progress the document.
Document Quality
The document is clear and well written.
In addition, the document contains an implementation status section which lists a number of implementations, including:
* A signer and validator implementation [rpki-rsc-demo] written in
Perl based on OpenSSL was provided by Tom Harrison from APNIC.
* A signer implementation [rpkimancer] written in Python was
developed by Ben Maddison.
* Example .sig files were created by Job Snijders with the use of
OpenSSL.
* A validator implementation based on OpenBSD rpki-client and
LibreSSL was developed by Job Snijders.
* A validator implementation [FORT] based on the FORT validator was
developed by Alberto Leiva for a previous version of this
specification.
Personnel
Keyur Patel is DS
Warren Kumari is RAD!!!!