The most recent source and binary releases for the Apache Commons project are available from this directory listing. For older releases, please use the archives.
Name Last modified Size Description
Parent Directory 23-Jan-2018 19:03 - bcel 08-Dec-2017 19:08 - beanutils 04-Oct-2017 10:56 - bsf 04-Oct-2017 10:56 - chain 04-Oct-2017 10:56 - cli 04-Oct-2017 10:56 - codec 24-Mar-2018 06:51 - collections 24-Mar-2018 06:51 - commons-build-plugin 04-Oct-2017 10:56 - commons-parent 15-Mar-2018 14:13 - commons-release-plugin 05-Mar-2018 18:22 - compress 10-Feb-2018 08:19 - configuration 12-Oct-2017 19:35 - crypto 04-Oct-2017 10:56 - csv 04-Oct-2017 10:56 - daemon 22-Nov-2017 19:22 - dbcp 27-Dec-2017 01:51 - dbutils 04-Oct-2017 10:56 - digester 04-Oct-2017 10:56 - email 24-Mar-2018 06:51 - exec 04-Oct-2017 10:56 - fileupload 04-Oct-2017 10:56 - httpclient 04-Oct-2017 10:56 - io 20-Oct-2017 06:19 - jci 24-Mar-2018 06:51 - jcs 04-Oct-2017 10:56 - jelly 04-Oct-2017 10:56 - jexl 04-Oct-2017 10:56 - jxpath 04-Oct-2017 10:56 - lang 08-Nov-2017 16:02 - logging 24-Mar-2018 06:51 - math 24-Mar-2018 06:51 - net 04-Oct-2017 10:56 - pool 19-Dec-2017 23:48 - proxy 04-Oct-2017 10:56 - rdf 23-Dec-2017 19:57 - rng 04-Oct-2017 10:56 - sanselan 04-Oct-2017 10:56 - scxml 04-Oct-2017 10:56 - text 23-Mar-2018 15:01 - validator 04-Oct-2017 10:56 - vfs 06-Oct-2017 18:46 - weaver 04-Oct-2017 10:56 -
Do not download from www.apache.org. Please use a nearby mirror site to help us save apache.org bandwidth.
All of the release distribution packages have been digitally
signed (using PGP or GPG) by the ASF committers that constructed
There will be an accompanying distribution.asc file in the same directory as the distribution.
The PGP/GPG keys can be found at the MIT key repository and within this project's KEYS file at https://www.apache.org/dist/commons/KEYS
Always use the signature to validate package authenticity, e.g., $ pgpk -a KEYS $ pgpv commons-logging-1.2-bin.tar.gz.asc or, $ pgp -ka KEYS $ pgp commons-logging-1.2-bin.tar.gz.asc or $ gpg --import KEYS $ gpg --verify commons-logging-1.2-bin.tar.gz.asc commons-logging-1.2-bin.tar.gz
See also Verifying Apache Software Foundation Releases
We also offer MD5/SHA hashes as an alternative to validate the
integrity of the downloaded files. See the
Note that such hashes are only useful as a check that the file has been downloaded OK. They do not provide any guarantee that the downloaded file is authentic.