Title: Apache Lucy Downloads

#### Release 0.3.2

 - [apache-lucy-0.3.2.tar.gz](http://www.apache.org/dyn/closer.cgi?path=/lucy/apache-lucy-0.3.2.tar.gz)
 - [[OpenPGP]](http://www.apache.org/dist/lucy/apache-lucy-0.3.2.tar.gz.asc)
 - [[MD5]](http://www.apache.org/dist/lucy/apache-lucy-0.3.2.tar.gz.md5)
 - [[SHA512]](http://www.apache.org/dist/lucy/apache-lucy-0.3.2.tar.gz.sha)
 - [CHANGES](http://www.apache.org/dyn/closer.cgi?path=/lucy/CHANGES-0.3.2.txt)
 - [KEYS](http://www.apache.org/dist/lucy/KEYS)


#### Verifying downloaded files

After downloading release files from a mirror, please check the 
[MD5](http://www.apache.org/dev/release-signing#md5) and 
[SHA](http://www.apache.org/dev/release-signing#sha-checksum)
checksums as well as verifying the 
[OpenPGP](http://www.apache.org/dev/release-signing#openpgp)
compatible signature available from
the main Apache download site. The KEYS file contains the public keys used for
signing release. It is recommended that a
[web of trust](http://www.apache.org/dev/release-signing#web-of-trust)
is used to confirm the identity of these keys.

To verify the OpenPGP signature:

        $ gpg --import KEYS
        $ gpg --verify apache-lucy-X.Y.Z.tar.gz.asc

*or*

        $ pgpk -a KEYS
        $ pgpv apache-lucy-X.Y.Z.tar.gz.asc

*or*

        $ pgp -ka KEYS
        $ pgp apache-lucy-X.Y.Z.tar.gz.asc


To verify the MD5 checksum, compare the output of a local checksumming
command against the contents of the .md5 file:

        $ gpg --print-md MD5 apache-lucy-*.tar.gz
        $ cat apache-lucy-*.tar.gz.md5

To verify the SHA512 checksum, use the same comparison technique:

        $ gpg --print-md SHA512 apache-lucy-*.tar.gz
        $ cat apache-lucy-*.tar.gz.sha