ISO 26429-8: Packing List for Digital Cinema Distribution Packages

1. Packing List Overview and Distribution Package Model

ISO 26429-8 (SMPTE 429-8) specifies the Packing List (PKL) data format for Digital Cinema applications. The Packing List is an XML document that enumerates all assets in a D-Cinema distribution package, including Composition Playlists, essence track files, and auxiliary content. The PKL serves as the manifest of a DCP, providing a complete inventory of package contents. A distribution package contains exactly one Packing List together with all referenced assets. The PKL supports both complete packages (containing all necessary assets) and partial packages (containing replacement or additional assets to supplement a previously delivered package). This flexibility is essential for real-world distribution workflows where content corrections, localized versions, and updated advertisements must be delivered incrementally without re-issuing the entire package. The PKL is also the primary discovery document for ingest systems by parsing the PKL first, a Theater Management System immediately knows the complete asset inventory required for a given presentation and can validate availability before beginning the ingest process. In multi-screen multiplex environments, the PKL enables automated routing of content to the correct auditorium based on the CPL references within the asset list, reducing manual intervention and the risk of screening errors while optimizing the screening schedule across multiple auditoriums and daily show times for each presentation.

2. XML Structure and Asset Description

The PackingList element uses the namespace http://www.smpte-ra.org/schemas/429-8/2007/PKL and contains identification (Id), metadata (AnnotationText, Issuer, Creator), and the critical AssetList. Each Asset element includes an Id (UUID from the original asset), Hash (SHA-1 digest in Base64), Size (in bytes), Type (MIME type), and optional OriginalFileName. The Hash element is crucial for integrity verification during ingest the receiving system computes the SHA-1 of each asset file and compares it against the Hash value in the PKL, detecting any corruption or tampering during transport. The SHA-1 hash is computed over the entire asset file content, including MXF headers, metadata, and essence data, providing end-to-end integrity assurance from mastering to exhibition. The PKL also supports the Encrypted element, a boolean flag that indicates whether the asset file is encrypted, allowing ingest systems to pre-allocate decryption resources before processing. This pre-allocation capability is particularly important for large-scale ingest operations where multiple assets must be processed in a specific sequence under strict time constraints and with limited hardware resources.

3. Digital Signing and Security

Like the CPL, the Packing List supports enveloped XML digital signatures using RSA-SHA256 with X.509 certificate chains. The Signature element authenticates the entire Packing List, and the entire certificate chain is carried in the KeyInfo element. The signing constraints mirror those of the CPL: SHA-1 digest, enveloped-signature transform, canonical XML (xml-c14n), and RSA-SHA256 signature method. This signing ensures that the asset inventory cannot be tampered with after the package is created, providing a chain of trust from content creator to exhibitor. The PKL signature verification is one of the first validation steps performed by the TMS during ingest an invalid or missing signature causes immediate rejection, preventing untrusted content from entering the cinema playback environment. The signature covers every asset entry in the PKL, ensuring that any modification to the asset list (adding, removing, or modifying entries) is immediately detectable upon signature verification by the receiving system.

4. Frequently Asked Questions