I'm not sure. There is a lot of documentation from Elastic on the topic, and I've seen configs in those docs where the http.ssl.truststore is provided. My earlier configuration for example included it, and Logstash etc worked correctly.
Given it wasn't required in the specific instructions I was following I opted to remove it, and everything worked. Might not be the answer though, hope the insight helps though,