The Uptrends client certificate can be used in Multi-step API monitors to guarantee the authenticity of the HTTP requests created by your monitors: your API server can verify the identity of Uptrends' checkpoint servers, which is where the HTTP requests are sent from.

The checkpoint servers will use the certificate's private key to sign the requests. No-one else has access to that private key, so no-one can sign a request in the same way and pretend to be Uptrends. This means that you, as the receiving party, can be sure that those requests are genuinely originating from Uptrends' servers. You do this by verifying the identity of the incoming requests using Uptrends' public key. The public key information is listed below.

How can I be sure this public key is genuine?

When establishing identity and authenticity, it's important to verify you're working with the correct information.

Trusted connection and transport

  • We've made sure that you're always reading the content on this page using an HTTPS connection. Having this secure connection means that the content can never be tampered with (no content hijacking) during transport from our webserver to your browser.
  • Even if a malicious person manages to present an HTTP link (i.e. a non-secure one) to the Uptrends website to you, that could subsequently be intercepted and the content be tampered with (a so-called downgrade attack), your browser will not accept that. Browsers will refuse to contact Uptrends over a non-secure connection, for the following reasons:
    • The Uptrends website and customer app portal have a HTTP Strict Transport Security (HSTS) policy in place. This means that browsers are instructed never to follow an insecure HTTP link to the uptrends.com domain, but always use HTTPS instead.
    • The uptrends.com domain was among the first 1,000 domains who were listed in the HSTS preload list. This preload list is hard-coded in mainstream browsers like Chrome, Firefox, Internet Explorer 11, Edge, Opera and Safari, which means that those browsers are hardwired to always use HTTPS for uptrends.com and its sub-domains.

Trusted identity

  • If you review the TLS certificate for this site, you'll notice that this website is owned by Uptrends LLC. The certificate is signed by COMODO, one of the worldwide recognized Certificate Authorities. Your browser wouldn't even trust the connection without a CA signing it.
  • Furthermore, you'll notice that the certificate is an Extended Validation (EV) certificate. This means that COMODO, as the authority who guarantees the identity of the certificate owner, performed audits to verify our existence as Uptrends' legal entity. This is the best available way to prove that the domain you're currently visiting is in fact owned by Uptrends, and that you can trust that its content is coming from Uptrends.

Public key information

The following information describes properties of the public key that corresponds to the client certificate used by Uptrends' checkpoint servers, when they're instructed to do so. This client certificate, just like the certificates pertaining to our web sites, have been signed by a Certificate Authority.

Issuer CN = COMODO RSA Client Authentication and Secure Email CA

O = COMODO CA Limited
L = Salford
S = Greater Manchester
C = GB

Subject E = certificates@uptrends.com
CN = Uptrends.com
O = Uptrends B.V.
STREET = Lemelerberg 15
PostalCode = 2402 ZN

L = Alphen aan den Rijn
C = NL

Common name Uptrends.com
Serial number 00 97 4b fb 0b ee 07 da 30 43 fc f9 3f 80 2a d5 a0
Full public key (Base64) -----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----