3.2.1.4.2.1.4.8 Signing and Returning the Issued Certificate
After constructing the certificate, the CA MUST sign the certificate with its signing key stored in the Signing_Private_Key data. Then the CA MUST save the certificate's serial number in the Serial_Number column of the Request table and MUST construct the response defined in the following sections. Note that the response MUST consist only of fields and content specified in the following subsections.