Kubernetes Ingress-Controller and AWS API Gateway client certificate
So you are missing the key and/or the CA for your cert. Did you use a private CA in AWS? The regular certificate manage doesn't give you a key file because it creates the CSR under the hood.
Generally, you'd create your tls secret like this:
kubectl -n kube-system create secret tls my-tls-cert --key=tls.key --cert=tls.crt
Also, I would append the CA that begins to with -----BEGIN CERTIFICATE-----
to the content of api-gateway-client-certificate.crt
Had the same error, it's because of a bad naming of the ca file.
Use this to create your secret:
kubectl create secret generic api --from-file=ca.crt=api-gateway-client-certificate.crt --namespace develop