The uasserts in EncryptedDBClientBase::getEncryptedKey(), such as this one, can be improved with more details about the key ID being looked up & which node it's targeting. This should help a lot with investigating QE BFs like BF-31236 where the keystore lookups fail.