On Mon, Dec 14, 2020 at 12:30:41AM +0100, Thomas Shuller wrote: >Dear Debian CD Team, > >I have seen that the SHA512SUMS.sign File and the SHA512SUMS of the >debian-10.7.0-amd64-DVD-*.iso give me a > >WARNING: This key is not certified with a trusted signature! > >gpg: There is no indication that the signature belongs to the owner. > >Primary key Fingerprint: DF9B 9C49 EAA9 2984 3258 9D76 DA87 E80D 6294 BE9B > >At the https://www.debian.org/CD/verify I se that that this is the >Fingerprint from 2011 is this correct for the new sign file?
Correct, that's the one. It's also available in the debian-role-keys keyring that you can get via keyring.debian.org if you need. -- Steve McIntyre, Cambridge, UK. [email protected] "C++ ate my sanity" -- Jon Rabone
