When using cbinit to import custom certificate, why it shows as "legacy" certificate on the console?

By default, the certificate installed during cbinit is produced by the server itself. As an alternative to the default legacy certificate, you can substitute your own certificate during the server post-installation initialization process.In either case, the certificate will be named “Legacy” where certificates appear in the console, and it will be protected from deletion