can someone verify the gnupg Fingerprint for pubkey?

[Sam Smith]

Yeah, thanks. It's the key that signed the .sig and the one I needed to download to verify. I downloaded it from a Key Server--don't know how else to get the public key.

I checked the gpg package legitimacy on a computer that already had gpg installed. But wanted to make sure I had a legit pub key for the new machine i was building. Thanks!

Is there another way to verify the legitimacy of a downloaded public key? (assuming you don't know any of the other sigs on the pub key that is, obviously). Or is asking on a user list like this the recommended way?



> Date: Wed, 6 Jun 2012 09:31:15 -0400
> From: shavital at gmail.com
> To: gnupg-users at gnupg.org
> Subject: Re: can someone verify the gnupg Fingerprint for pubkey?
> 
> Sam Smith <SNT123-W473749522376A8D4B7B6EAC20D0 at phx.gbl> June 6, 2012
> 9:25:37 AM wrote:
> Sam Smith wrote on 6/6/12 8:54 AM:
> > Can someone please verify that I have the legit public key to verify
> > GnuPG with? I checked the website but the Fingerprint is not given anywhere.
> > 
> > I got this Fingerprint for the Public Key I downloaded
> > 
> > D869 2123 C406 5DEA 5E0F  3AB5 249B 39D2 4F25 E3B6
> 
> That's the fingerprint for Werner Koch (dist sig):
> 
> pub 2048R/4F25E3B6 created: 2011-01-12  expires: 2019-12-31  usage: SC
>                      trust: []         validity: []
> sub 2048R/AC87C71A created: 2011-01-12  expires: 2019-12-31  usage: A
> [] (1). Werner Koch (dist sig)
> pub   2048R/4F25E3B6 2011-01-12 Werner Koch (dist sig)
> Primary key fingerprint: D869 2123 C406 5DEA 5E0F 3AB5 249B 39D2 4F25 E3B6
> 
> 
> 
> Hope this is what you were looking for.
> Charly
> Mac OS X 10.7.4 (11E52) MacBook Intel C2Duo MacGPG2-2.0.17-9
> Thunderbird 13.0 Enigmail 1.4.2 (20120519-0100)
 		 	   		  
-------------- next part --------------
An HTML attachment was scrubbed...
URL: </pipermail/attachments/20120606/6bba44fb/attachment.htm>