If you are migrating your PI server, why not take the existing certificates from the current Keystore into the new PI Server Keystore.
The only certificate that would need to be ideally regenerate would be your SSL certificate as in this case, the hostname will vary / change and hence the common name *might* need to be updated ( if a wild card is not used in the SSL Certificate for current host name ).
Regards
Bhavesh