I faced a major alert is UCSM regarding Default Key Ring Certificate Expired.
Certificates is only valid for 1 year. After that new certificate would needs to be generated.
Check the validity and expiry date as below
login to your primary FI as admin and execute below commnds
FI-A# scope security
FI-A/security# show keyring detail
Generate the new Certificate
FI-A# scope security
FI-A/security# scope keyring default
FI-A/security/ keyring# set regenerate yes
FI-A/security/ keyring*# commit-buffer
UCSM will disconnect and reconnect .
Run the above commands again to validate .