unable to verify gpg 1.4.3 tar file

Charles Blair c-blair at uiuc.edu
Thu May 18 18:29:06 CEST 2006

   I have been trying to verify the source for gpg 1.4.3
using a previously installed gpg 1.4.1.  Thanks for any help!

   When I type gpg --verify gnupg-1.4.3.tar.gz.sig I get:

> Signature made Mon 03 Apr 2006 05:42:26 AM CDT 
> using RSA key ID 1CE0C630 
> Can't check signature: public key not found

   I tried gpg --import samplekeys.asc

and then gpg --list-keys "Koch" gives:

pub   1024D/57548DCD 1998-07-07 [expired: 2005-12-31)]
uid             Werner Koch (gnupg sig) <dd9jn at gnu.org>

pub   1024D/621CC013 1998-07-07 [expired: 2002-11-01)]
uid               Werner Koch <werner.koch at guug.de>

pub    768R/0C9857A5 1995-09-30
uid   Werner Koch (mein alter key) <wk at computer.org
uid          Werner Koch <werner.koch at guug.de>

pub   1024D/5B0358A2 1999-03-15 [expires: 2009-07-11]
uid                  Werner Koch <wk at gnupg.org>
uid                  Werner Koch
uid                  Werner Koch <wk at g10code.com>
sub   1024D/010A57ED 2004-03-21 [expires: 2007-12-31]

More information about the Gnupg-users mailing list