While updating the Gateway private keys I noticed that the cert chain does not get properly imported. While checking from the policy manager , the private key shows 3 leaf where as while checking it from the browser, it shows 4 leaf. and that was causing the consumers issue not trusting the root that was presented at the gateway .

11.1

Importing the certificate with the complete chain and redeploying the gateways solved the issue.