You can use Mutual TLS Edge Truststore API to create, manage, and activate certificate (CA) sets needed to set up mutual authentication (mTLS) sessions between a client and ​Akamai​ edge servers.
Each CA set contains a collection of certificates that validate the client certificates presented by a user during mTLS — that's the TLS handshake at the edge server.

You can specify intermediate and root certificates that sign their client certificates while grouping them into sets for activation on the staging or production networks. CA sets are available for use on all contracts within the account that creates them. To enable mTLS on those certificates and to apply a CA set to one or more certificates on a contract, you can use the Certificate Provisioning System.