Breaking Certutil changes in WS2025

I noticed yesterday that a certutil command I thought I could always rely on no longer works in Server 2025:

>certutil -cainfo xchg
CertUtil: -CAInfo command FAILED: 0x80070057 (WIN32: 87 ERROR_INVALID_PARAMETER)
CertUtil: The parameter is incorrect.

Executing certutil -cainfo xchg was a handy command which would ask the local certificate authority to output it's current CA Exchange certificate in Base64 format.  If the CA didn't have a valid exchange cert at the time, it would immediately create a new one. Think of a CA Exchange certificate as a short-lived TLS cert which the CA provides clients when they need to upload private key material for archival. 

Anyway, looking at the help for certutil, the command still exists, however, it requires a new parameter:

xchg [Index] -- CA exchange cert

So, I figured [Index] had to refer to the CA certificate index. When you initially deploy an ADCS certification authority, the CA's initial certificate is at index 0.  When you renew/re-key the CA, the new CA cert is at index 1.

I tried using 0 for the [Index] parameter. No dice:

>certutil -cainfo xchg 0
CertUtil: -CAInfo command FAILED: 0x80070057 (WIN32: 87 ERROR_INVALID_PARAMETER)
CertUtil: The parameter is incorrect.

I can't think of what else that parameter would be.  Has anyone been able to successfully used this command on WS2025? If so, please share how!