[arcdigital]

If you read the transition page linked in the email pasted above, you will learn that this won't affect most people.

You only need to update your trust store in a very narrow set of cases. All of the below need to be true AND you need to be running a system that doesn't already trust the AWS root CA - most systems already do. If the AWS website doesn't show an SSL error, you already trust the certs.

1) If you're actually forcing SSL verification in your client

2) If you're not using the GovCloud or China regions

3) You are using Redshift drivers prior to ODBC version 1.3.7.1000 or JDBC version 1.2.8.1005, or not using the Redshift drivers.