What i actually have noticed is that the tool for some reason pushed a self signed cert when i use this tool and attempt to pull in my code signing cert.
Is your Enterprise CA certificate stored in the "WSUS" store of the WSUS Server?
If so, delete the self-signed certificate from the "WSUS" store and do a Refresh Update Server to cache the CA-based cert.