We use split DNS for a good amount of our applications, meaning internal customers do not traverse XC but rather go directly to the Big-IP for those services. Having the ability to retrieve the private key and public certificate from the XC UI and API would enable us to use the same certificate on both, reduce manual steps & introduce a small cost savings (by not needing to renew Big-IP VS certs with other third-party CAs).