Very belatedly, just want to say enormous thanks to you Carsten for this info and the full explanation. Really appreciate your help in my hour of need.
By the way, is there a list anywhere of the websites to download certs from all the main manufacturers?
JimAm 28.10.2016 um 15:55 schrieb Jim Dummett via DCPomatic:I'm co-ordinating delivery of an encrypted DCP feature made by someone else to a cinema. The filmmakers need the server cert to make a KDM. The only information the cinema has been able to give me is "Doremi DCP-2K4 serial no. <six digit number>". Is there any online database to look up the server cert from the serial number? I really hope that this information is not proprietary. The clue that it shouldn't be is the word "public" in "public key cryptography"!Hi Jim, you have two options - have DOM download the certificate from within the Make KDM -> add/edit cinema->add/edit screen ->Download database window, or download it manually from http://www.dolbycustomer.com/cinema/Certificates . Both will simply need that six digit number. In general, I prefer the hard manual way to do things, but as a matter of fact, if you download from that site, you will receive a ZIP file with many different certs for various reasons and applications. While the automatic download in DCP-o-matic will choose just the right one for creating a KDM for that server, so, just do that! This of course only applies if those filmmakers are using DCP-o-matic. If not, they need to download the certs from the mentioned site and choose either the xxx.cert.sha256.pem or xxx.chain.sha256.pem (which one depends on their KDM management system/software, in general, the xxx.cert256.pem is sufficient technically) - Carsten
_______________________________________________ DCPomatic mailing list DCPomatic@carlh.net http://main.carlh.net/cgi-bin/mailman/listinfo/dcpomatic