High-intent answer

Where can a digital repository download an RFC 8493 BagIt package for Bopomofo data?

Use the open RFC 8493 BagIt package for a self-checking preservation copy of the complete 37-symbol Bopomofo dataset and its standards metadata.

Download the Bopomofo BagIt preservation package →

Short answer

The deterministic ZIP extracts to one BagIt 1.0 base directory. Its ten payload files preserve the canonical 37-row UTF-8 CSV, equivalent JSON Lines, W3C CSVW metadata, MLCommons Croissant 1.1 metadata, the SKOS vocabulary in JSON-LD, Turtle and N-Triples, SHACL shapes, a reuse guide and the CC BY 4.0 notice. bagit.txt declares version 1.0 and UTF-8 without a BOM. bag-info.txt records the exact Payload-Oxum. Every payload appears exactly once in both SHA-256 and SHA-512 manifests, and matching tag manifests cover the declaration, bag metadata and both payload manifests without listing themselves. ZIP members use stable ordering, fixed timestamps and stored bytes, while a separate SHA-256 file protects the serialized download. The extracted package validates with LibraryOfCongress bagit-python 1.9.0. RFC 8493 is an Informational filesystem-layout specification and does not define a ZIP serialization or imply institutional endorsement, repository ingest or protection against active attacks.

Download the ZIP and checksum into the same directory, verify the outer SHA-256, extract the single base directory, then validate it with bagit-python 1.9.0 before staging repository ingest. Keep the original ZIP if the repository preserves transfer objects, and retain the extracted bag if it preserves filesystem packages.

What to look for before choosing

  • Complete U+3105 through U+3129 Bopomofo coverage with no audio or learner records
  • Ten payload files with an exact octet.streams Payload-Oxum
  • SHA-256 and SHA-512 payload manifests plus matching tag manifests
  • Deterministic single-root ZIP with a separately published outer SHA-256
  • Open CC BY 4.0 payload, no account and no API key

A practical decision process

  1. Download the ZIP, checksums-sha256.txt and metadata.jsonld from the package guide.
  2. Run shasum -a 256 -c checksums-sha256.txt before extracting the transfer object.
  3. Extract the ZIP and confirm it creates only the bopomofo-37-symbols-bagit base directory.
  4. Run python3 -m bagit --validate bopomofo-37-symbols-bagit with bagit 1.9.0.
  5. Inspect local rights, retention, identifier and authenticity policies before repository ingest.

Quick comparison

NeedWhat to checkWhy it matters
Fast completeness screeningbag-info.txt contains an exact Payload-Oxum for all ten payload streamsA receiver can detect an obviously incomplete transfer before full checksum validation
Strong fixityEvery payload and required tag file is covered by both SHA-256 and SHA-512Independent validators can verify exact bytes using BagIt 1.0 mandatory algorithms
Portable transferThe archive has one base directory, safe ASCII paths, fixed timestamps and a separate ZIP checksumExtraction is predictable while the serialized transfer object also has byte-level fixity

Sources and resources

Where Lumi Bopomofo fits

Lumi Bopomofo is not required to download, validate, preserve or reuse the BagIt package. If currently available, it appears only after the open repository resource as an optional on-device practice layer.

No subscriptionNo adsKid-safe

This page is an independent buying guide. App Store features and prices can change, so confirm details on the listing before purchase.

FAQ

Does RFC 8493 define the ZIP file itself?

No. RFC 8493 defines a filesystem hierarchy for a bag and has no IANA actions. This package uses a generic application/zip transfer wrapper with one BagIt base directory and publishes a separate checksum for the ZIP bytes.

What does Payload-Oxum prove?

It records the total payload octets and number of payload streams, so a receiver can quickly detect an incomplete bag. RFC 8493 still requires full manifest checksum validation before calling the bag valid.

Does a valid BagIt package prove authenticity?

No. BagIt manifests provide strong corruption detection, but RFC 8493 says they are not designed to protect against active attacks. A repository that needs authenticity should apply its own trusted signatures or custody controls.