verifying rpms - public key not found

Charly Avital shavital at
Fri Jul 3 08:15:41 CEST 2009

Daniel Kahn Gillmor wrote the following on 7/3/09 1:21 AM:

> You're probably interested in something like gpg --verify, but i don't
> know exactly how signed .rpms work (i work with .debs mostly, which have
> external signatures), so hopefully someone else can pipe up with the
> specifics.

If you signed your .rpm file with a detached signature, you might try:

$ gpg --verify [path to]signature file    [path to]signed file.


More information about the Gnupg-users mailing list