Strange record after ROS update

I found new records in the export file:

/port
set 0 name=serial0
set 1 name=serial1
/interface lte apn
set [ find default=yes ] ip-type=ipv4 use-network-apn=no
/routing bgp template
set default disabled=no output.network=bgp-networks
/routing ospf instance
add disabled=no name=default-v2
add disabled=no name=default-v3 version=3
/routing ospf area
add disabled=yes instance=default-v2 name=backbone-v2
add disabled=yes instance=default-v3 name=backbone-v3

Why does it appear?
If I don’t use any of these options, can I just remove them?

When defaults are changed, the config of the device is untouched, but on export you see the values set of previous defaults.

You can 1) ignore them, 2) Set that to default values for not appear on export.

3. paste this on terminal

/interface lte apn
set [ find default=yes ] ip-type=auto use-network-apn=yes
/routing bgp template
set default disabled=yes !output.network
/routing ospf instance
remove [find where name=default-v2]
remove [find where name=default-v3]
/routing ospf area
remove [find where name=backbone-v2]
remove [find where name=backbone-v3]

About the /port part, do not remove them, or you risk to no longer access your device with serial terminal, if is needed.

Finally googled this https://tangentsoft.com/mikrotik/wiki?name=Configuration+Flotsam&p
But first I tried to reset ovpn-server settings through WinBox it forced me to choose Cerfiticate field. How to unset “certificate” in ovpn-server settings?

Finally what?
Are you kidding me, or is it just to spam the site???
I replied not even 20 minutes later your question…
What an a–e.

Because you didn't explain what it was, you just said "turn it off if you're not using it". The link just says that the entries appear after the update, so I deleted them.
The only question is how to remove the certificate selected for openvpn from the configuration.

I’ll just sit and watch till you finally Googled it.

No, I do not said that.

But is not… “turn it off if you’re not using it”???
On post #2 is explaned, other users can judge if is true or not that I at least explain why happen that.

You do not ask any info about what are those instructions and and what are they for.

And regarding ovpn-server certificates, if I had already put that line at the beginning, I would have had the answer.
But I see that you are not even good at googling what you already found before, it already has the answer for the ovpn-server…

From your link…
If you reset this item to its new default so:

/interface ovpn-server server
set auth=sha1,md5,sha256,sha512

…it will no longer appear in your /export output.

Yes. But:

As far as I understand, Certificate field cannot be left blank. If I did through the console, then the problem would not appear. But I already did it through winbox and now the certificate is selected.
So my question is how to reset a field that cannot be blank?

Untitled-1.jpg752×633 103 KB

Make export, remove any unnecessary lines, reset the Tik without default and import your export.
Instead of reset, you can also do a netinstall.

The question itself accepts no answers.
How to delete something that shouldn’t be deleted???

The value is “string” (id as string, for be precise) and can not be “nil”/“nothing”,empty, but at least one id.
No matter if exist or not one certificate with that id.
Using winbox you configure all the parameters at same time, and certificate is needed by ospf for work.
Is why winbox do not accept unexistant certificate and you must specify one.

Is not the reply to the queston, and at the same time netisntalling do not set any cert on "certificate", but still id as string "*0"

Actually, mine is “set” to unknown (where Certificate is presented in red).

"unknown" because winbox do not find the cert with id "*0"
If you add any cert to the device, if never set differently, here appear the first cert you add to the device.

If you "print" on terminal, you can see the cert id *0 (that probably on your device not exist)