"dsidm role rename-by-dn" command does not rename a role at all

389-ds-base-3.0.5-2.el10.x86_64

1. Create a role (e.g. managed)
2. Try to rename a role using "dsidm role rename-by-dn"
3. Check for original/renamed role

Message about successful rename is produced but with the original dn, and the entry still exists only under the original dn.

# dsidm localhost -b dc=example,dc=com role create-managed
Enter value for cn : test_role
Successfully created test_role

# dsidm localhost -b dc=example,dc=com role list
test_role

# dsidm localhost -b dc=example,dc=com role get test_role
dn: cn=test_role,dc=example,dc=com
cn: test_role
description: test
objectClass: nsSimpleRoleDefinition
objectClass: nsManagedRoleDefinition
objectClass: nsRoleDefinition
objectClass: ldapSubEntry
objectClass: top


# dsidm localhost -b dc=example,dc=com role rename-by-dn cn=test_role,dc=example,dc=com cn=renamed,dc=example,dc=com
Successfully renamed to cn=test_role,dc=example,dc=com 

# dsidm localhost -b dc=example,dc=com role list
test_role

# dsidm localhost -b dc=example,dc=com role get test_role
dn: cn=test_role,dc=example,dc=com
cn: test_role
description: test
objectClass: nsSimpleRoleDefinition
objectClass: nsManagedRoleDefinition
objectClass: nsRoleDefinition
objectClass: ldapSubEntry
objectClass: top

# dsidm localhost -b dc=example,dc=com role get-by-dn cn=renamed,dc=example,dc=com
Error: No such object

Role should have new cn and dn.

Output is the same when using the keep-old-rdn option - no changes are made.