How can I configure mTLS to authenticate API clients securely?

<!-- BEGIN COPY / PASTE -->
    # Example Nginx configuration for mTLS
    server {
      listen 443 ssl;
      ssl_certificate /etc/ssl/certs/server-cert.pem;
      ssl_certificate_key /etc/ssl/private/server-key.pem;
      ssl_client_certificate /etc/ssl/certs/ca-cert.pem;
      ssl_verify_client on;
      ssl_verify_depth 2;
    }
    <!-- END COPY / PASTE -->