How to download

Use the links below to download a distribution of Apache Forrest from one of our mirrors. It is good practice to verify the integrity of the distribution files.

Apache Forrest is distributed as a zip archive (for Windows) and as a tar.gz archive (for UNIX). The contents are the same, the only difference is the line-endings of all text files.

The distribution contains all of the source code, documentation, and resources, together with the pre-built ready-to-run forrest binary.

Current official release (closest mirror site selected automatically)

You are currently using [preferred]. If you encounter a problem with this mirror, then please select another. If all mirrors are failing, there are backup mirrors at the end of the list. See status of mirrors.

Other mirrors:

The current release is Apache Forrest 0.6 (see the release notes).

Snapshots of current development and head SVN repository

If you want to use the latest Apache Forrest features, the source code is under version control with Subversion (read how to obtain your working copy). There are also compressed source snapshots that are packed every 6 hours.

Archive of old releases

Older releases are available in the archive. Those releases are only provided as historical artefacts. We strongly recommend to not use those releases, but upgrade to the most recent release.

Verify releases

It is essential that you verify the integrity of the downloaded files using the PGP and MD5 signatures. MD5 verification ensures the file was not corrupted during the download process. PGP verification ensures that the file came from a certain person.

The PGP signatures can be verified using PGP or GPG. First download the Apache Forrest KEYS as well as the asc signature file for the particular distribution. It is important that you get these files from the ultimate trusted source - the main ASF distribution site, rather than from a mirror. Then verify the signatures using ...

% pgpk -a KEYS
% pgpv apache-forrest-X.Y.tar.gz.asc

or

% pgp -ka KEYS
% pgp apache-forrest-X.Y.tar.gz.asc

or

% gpg --import KEYS
% gpg --verify apache-forrest-X.Y.tar.gz.asc

To verify the MD5 signature on the files, you need to use a program called md5 or md5sum, which is included in many unix distributions. It is also available as part of GNU Textutils. Windows users can get binary md5 programs from here, here, or here.

We strongly recommend you verify your downloads with both PGP and MD5.