This is the announcement of the change where they are no longer including their policy ids in certificates:
I'm not clear on what problem you're having that you're trying to solve (maybe because I'm not that familiar with Kubernetes) but I'm pretty sure that it isn't related to the policy id change.