Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

GPG Verify rubyinstaller-devkit-3.0.2-1-x64.exe #21

Open
larskanis opened this issue Jul 13, 2021 · 2 comments
Open

GPG Verify rubyinstaller-devkit-3.0.2-1-x64.exe #21

larskanis opened this issue Jul 13, 2021 · 2 comments

Comments

@larskanis
Copy link
Member

Hi,

I did below mentioned steps to verify rubyinstaller-devkit-3.0.2-1-x64.exe file.
OS: Windows 10

Import signing key

gpg --import ci.ri2-package-signing-key.asc
gpg: key 30B77F3A: "ci.ri2 package signing key" not changed
gpg: Total number processed: 1
gpg: unchanged: 1

Verify Downloaded File

gpg --verify rubyinstaller-devkit-3.0.2-1-x64.exe.asc
gpg: assuming signed data in 'rubyinstaller-devkit-3.0.2-1-x64.exe'
gpg: Signature made 07/10/21 01:46:32 Standard Time using RSA key ID AAE32BA7
gpg: Can't check signature: No public key

I downloaded signing key from https://rubyinstaller.org/ci.ri2-package-signing-key.asc.
So far I was not able to verify the download.
Is the signing key updated for new versions of Rubyinstaller?

Thank You,
Chamal.
@larskanis
Copy link
Member Author

The sign process before upload doesn't specify the key to be used. This seems to have mixed up the signature keys of uploaded files. I'll fix this.

@dimasfs07
Copy link

I have same problem with verify gpg. So is there a solution ?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@larskanis @dimasfs07