FDP_CRL_EXT.1 and FDP_OCSP_EXT.1 specify things the TOE must include in revocation information it generates.
These SFRs do not place requirements on the signing certificate. When the TOE is a CA, it should ensure it is signing CRLs with a CA cert with the CRL sign bit and OCSP responses with an CA cert or delegated OCSP responder.
FDP_CRL_EXT.1 and FDP_OCSP_EXT.1 specify things the TOE must include in revocation information it generates.
These SFRs do not place requirements on the signing certificate. When the TOE is a CA, it should ensure it is signing CRLs with a CA cert with the CRL sign bit and OCSP responses with an CA cert or delegated OCSP responder.