On a computer that has the Windows operating system installed, the operating system stores a certificate locally on the computer in a storage location called the certificate store.
A certificate store often has numerous certificates, possibly issued from a number of different certification authorities (CAs).
learn.microsoft.com/en-us/windows-hardware/drivers/install/certificate-stores#certificate-stores
Certificates are found in stores.
Two major store locations exist that are further divided into sub-stores.
If you are the administrator on a computer, you can view both major stores by using the MMC snap-in tool.
Non-administrators can view only the current user store.
The local machine store.
This contains the certificates accessed by machine processes, such as ASP.NET.
Use this location to store certificates that authenticate the server to clients.The current user store.
Interactive applications typically place certificates here for the computer's current user.
If you are creating a client application, this is where you typically place certificates that authenticate a user to a service.These two stores are further divided into sub-stores.
If a certificate is added to the local machine Trusted Root Certification Authorities certificate store, all current user Trusted Root Certification Authorities certificate stores (with the above caveat) also contain the certificate.