After migration to the newDB (h2 and postgres), on removal of an SSL certificate, I see the below WARN. This warning is not observable on non-h2 3.22-SNAPSHOT nor in 3.21.1 pre-migration orient.
Analysis found that Orient DB trustCerts are saved lowercase like
trustCerts = 28:bb:d0:9c:b2:31:cb:81:0d:d3:9b:6c:41:4d:23:d1:fc:26:ad:38 and alias(fingerprint) received in uppercase
alias = 28:BB:D0:9C:B2:31:CB:81:0D:D3:9B:6C:41:4D:23:D1:FC:26:AD:38.
When we're using H2 or Postgres DBs (migrated from Orient) we can see WARN message saying that trustCerts record is still present on delete. It wasn't deleted because the alias(fingerprint) was received in uppercase and the saved record is in lowercase.
This is not an issue for DBs migrated with no SSL certificates either.
Any in memory cache of certificates needs to be properly updated on cert delete. Avoid the WARN log messages as they don't match what is actually stored in the database.