When trying to update SDDC environment and running pre-checks below errors may be seen: 

• spherelet-version-mismatch-precheck - Error description spherelet version mismatch precheck failed internally

and/or 

• vsphere SHA-1 validation failed 

Certificates are also updated through SDDC UI for nodes, and show as trusted here

VMware Cloud Foundation 5.2.x

Stale entries in environment may cause the prechecks to pick up on components, which are no longer in use on nodes and which are also no longer supported such as SHA 1

Additionally, if the Trusted Store did not properly refresh when certificates were updated, SDDC may experience Certificate Verification failures during prechecks and the Trusted Store requires a refresh to acknowledge the certificates presence here

• To remove any stale entries which may cause these errors please reboot the management vCenter to try and clear any SHA 1 values which are no longer relevant. 
• To try clear error "spherelet-version-mismatch-precheck - Error description spherelet version mismatch precheck failed internally", log into the SDDC manager through SSH and access root with "su -" and run below command to refresh the trusted store 

curl -X POST localhost/appliancemanager/trustedCertificates/refresh

-> If certificates were updated on the nodes individually or outside of SDDC, please see following article on how to add the certificate to SDDC Trusted Store: Spherelet version compatibility and SHA-1 validation certificate prechecks are failing on the SDDC manager.

• If issue persists, please contact Global Support for assistance into reviewing the issue