After import the keys from: https://www.mediawiki.org/keys/keys.txt
This is what i got:
$ gpg --verify mediawiki-1.23.0.tar.gz.sig gpg: Signature made Thu 05 Jun 2014 01:03:32 AM PDT using RSA key ID 5DC00AA7 gpg: Good signature from "Markus Glaser glaser@hallowelt.biz" gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. Primary key fingerprint: 280D B784 5A1D CAC9 2BB5 A00A 946B 0256 5DC0 0AA7
On Sat, Jun 7, 2014 at 10:49 AM, Gordon Joly gordon.joly@pobox.com wrote:
# gpg --list-keys mediawiki-1.23.0.tar.gz.sig gpg: error reading key: No public key
Should I expect this? I have been trying to verify the latest release.
# gpg --verify mediawiki-1.22.4.tar.gz.sig gpg: Signature made Tue 11 Mar 2014 16:01:30 GMT using RSA key ID 7F901A30 gpg: BAD signature from "Mark A. Hershberger mah@everybody.org"
# gpg --verify mediawiki-1.23.0.tar.gz.sig gpg: Signature made Thu 05 Jun 2014 09:03:32 BST using RSA key ID 5DC00AA7 gpg: Can't check signature: No public key
Regards,
Gordo
MediaWiki-l mailing list MediaWiki-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/mediawiki-l