Are the certificates signed by the same Certificate Authority ("CA")? If so, you can set the path to the CA cert per the usual documentation. If not, multiple pem can simply be concatenated together to form a "bundle" pem.
To create a pem that holds multiple certificates, you can simply concatenate the pem files that hold individual certificates together (this is not unique to Logstash -- it's part of the PEM format):
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant
logo are trademarks of the
Apache Software Foundation
in the United States and/or other countries.