指定对金融服务行业公钥加密中公钥证书和证书吊销列表定义的扩展:证书管理，BSR X9。57.这些扩展涉及以下方面:涉及的密钥，包括主体密钥和颁发者密钥的密钥标识符、预期或限制密钥使用的指标，以及证书策略的指标；证书主体、证书颁发者或CRL颁发者的名称表格，以及关于证书主体的附加属性信息； 包括在CA证书中，即由其他CA颁发的CA证书中，以便于在涉及多个证书策略时（例如，当一个环境中的不同应用程序的策略不同时，或当与外部环境发生互操作时），自动处理证书路径；以及导致撤销的情况发生的时间；从CRL到CRL的部分更改只支持CRL和CRL的部分更改。

Specifies extensions to the definitions of public-key certificates and certificate revocation lists in Public Key Cryptography for the Financial Services Industry: Certificate Management, BSR X9.57. These extensions are in the following areas: the keys involved, including key identifiers for subject and issuer keys, indicators of intended or restricted key usage, and indicators of certificate policy; name forms for a certificate subject, a certificate issuer, or a CRL issuer, and additional attribute information about a certificate subject; included in CA-certificates, i.e., certificates for CAs issued by other CAs, to facilitate the automated processing of certification paths when multiple certificate policies are involved, e.g., when policies vary for different applications in an environment or when interoperation with external environments occurs; and time at which the condition causing the revocation occurred; revocation information from one CA to be partitioned into separate CRLs to facilitate control of CRL sizes, and CRL extensions to support the use of partial CRLs indicating only changes since an earlier CRL issue.