AWS RDS also enables you to encrypt database connections using SSL. Here, all the database flavors, such as MySQL, MariaDB, SQL Server, Oracle, and Postgres, have their own way of implementing the SSL.
AWS RDS creates an SSL certificate and installs the certificate on the database instance while provisioning the instance. These certificates are signed by a certificate authority (CA). The SSL certificate includes the DB instance endpoint URL as the common name (CN) for the SSL certificate.
Now, to implement these keys, we use the following script:
mysql -h <specify you mysqlRDS endpoint url> --ssl-ca=https://s3.amazonaws.com/rds-downloads/rds-combined-ca-bundle.pem ...