As of various SHA algorithm the Apache policies around signatures and checksums changed requiring to specify the sha algorithm as part of the file extension: sha1, sha256, sha512.
currently Oak signs with sha-1 and we should at least change the file extension
- release process (pom.xml)
- check release
- html download page