When you receive a JWT, it's signed with a private key, and to verify the token's authenticity, you need the corresponding public key, which is often provided through the jwks_uri.
Hey Raghavendra,
If the token is generated using via external IDP, then that IDP will provide jwks Uri to validate the token.
If the token is generated using a certificate, then jwks Uri will not be applicable.
Thanks & Regards,
Naman Khard