Question #193682 on HIPL changed: https://answers.launchpad.net/hipl/+question/193682 changyou xing gave more information on the question: We have debugged the program, now we find that all problems are caused by the certificate verification wrong. After receiving R2 packet, the hipfw prints that "could not verify trust point certificate, certificate error on R2". When using openssl to verify the certificate, we use the following command "openssl verify -CAfile ca-root-cert.pem host-cert.der", and it says that "unable to load certificate, 3077813996:error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib.c:696:Expecting:TRUSTED CERTIFICATE". Both ca-root-cert.pem and host-cert.der are generated according to the doc, so could you tell me what's wrong with it? Thank you. -- You received this question notification because you are a member of HIPL core team, which is an answer contact for HIPL.