•  Recently upgraded to NSX 4.2.X.
•  There were issues during the upgrade due to a stuck unpin API task.
•  NSX support had to intervene during the upgrade, and make manual changes in the Corfu DB to complete the upgrade, which involved setting the NSX version to 4.2.X
•  After the upgrade the customer noticed that not all certificates are visible in the NSX Manager UI. Only the CBM certificates are visible.

VMware NSX

• The failure to update the Corfu version before the unpin search resync operation during the upgrade, leads to data being indexed using the older 3.2.x DTO structure.
• This structure lacks the "category" field (introduced in 4.2.x), which is essential for UI filtering. 

• To resolve the issue, SSH as the admin user and execute "start search resync all" CLI command on all NSX Manager nodes in the upgraded cluster.
• This will re-index the data using the correct 4.2.x DTO structures.

• The issue can be confirmed using the following API. If the certificates are present in the response from the API, but missing the "category" field, then it is the same issue:

GET https://{nsx}/policy/api/v1/search?query=resource_type:(certificate_ca OR certificate_signed OR certificate_self_signed OR TlsCertificate) AND !_create_user:nsx_policy