...
Description | File | MD5 | SHA1 | PGP |
---|---|---|---|---|
Source distribution | ||||
| ||||
Binary distribution | ||||
|
Verifying Releases
When downloading from a mirror please check the MD5 and SHA1 checksums as well as verifying the OpenPGP compatible signature available from the main Apache site. The KEYS file contains the public keys used for signing release. It is recommended that a web of trust is used to confirm the identity of these keys.
You can check the OpenPGP signature with:
Code Block |
---|
gpg --verify apache-cxf-*.tar.gz.asc
|
You can check the MD5 checksum with:
Code Block |
---|
md5sum --check apache-cxf-*.tar.gz.md5
|
You can check the SHA1 checksum with:
Code Block |
---|
sha1sum --check apache-cxf-*.tar.gz.sha1
|
Previous releases
Previous releases are all archived in the apache archive:
Non-incubator releases: http://archive.apache.org/dist/cxf/
Incubator releases: http://archive.apache.org/dist/incubator/cxf/
...