%% You should probably cite rfc8603 instead of this I-D.
@techreport{jenkins-cnsa-cert-crl-profile-05,
    number =    {draft-jenkins-cnsa-cert-crl-profile-05},
    type =      {Internet-Draft},
    institution =   {Internet Engineering Task Force},
    publisher = {Internet Engineering Task Force},
    note =      {Work in Progress},
    url =       {https://datatracker.ietf.org/doc/draft-jenkins-cnsa-cert-crl-profile/05/},
    author =    {Michael J. Jenkins and Lydia Zieglar},
    title =     {{Commercial National Security Algorithm (CNSA) Suite Certificate and Certificate Revocation List (CRL) Profile}},
    pagetotal = 12,
    year =      2018,
    month =     nov,
    day =       15,
    abstract =  {This document specifies a base profile for X.509 v3 Certificates and X.509 v2 Certificate Revocation Lists (CRLs) for use with the United States National Security Agency's Commercial National Security Algorithm (CNSA) Suite. The reader is assumed to have familiarity with RFC 5280, "Internet X.509 Public Key Infrastructure Certificate and Certificate Revocation List (CRL) Profile". The profile applies to the capabilities, configuration, and operation of all components of US National Security Systems {[}SP-800-59{]}. It is also appropriate for all other US Government systems that process high-value information. It is made publicly available for use by developers and operators of these and any other system deployments.},
}