I hope you'll agree with me that this is *very* misleading if CRL checks
are not supposed to work with 0.9.7d.
They should work with 0.9.7d. IIRC that was the version I used when
implementing CRL support.
Note: As stated in the man-pages (ldap.conf(5) and slapd.conf(5)), when you
want to use CRLs you have to specify a CACERTDIR. That directory has to be
correctly hashed (using c_rehash).