I did add my fingerprint to my LDAP profile, but that might not be synced yet with the keys file. See https://infra.apache.org/new-committers-guide.html#set-up-security-and-pgp-keys _____________________
Upload the public key to a public key server, for example the MIT PGP Public Key Server. Then add your keys' primary fingerprints to your LDAP profile. The system adds your key to the individual and per-project pre-fetched KEYS files, and lets automated tools encrypt communications to you. -----Original Message----- From: Piotr Żygieło <piotr.zygi...@gmail.com> Sent: Thursday, 28 November 2024 15:54 To: dev@felix.apache.org Subject: Re: [RESULT] [VOTE] Release maven-bundle-plugin version 6.0.0 > I added the artifacts to the dist folder I think the KEYS file published at https://felix.apache.org/documentation/downloads.html does not contain 524E21A269663147319D55F8DD2B17ACA29BD7AB used to sign artifacts. gpg: Signature made Mon 25 Nov 2024 12:01:02 CET gpg: using EDDSA key 524E21A269663147319D55F8DD2B17ACA29BD7AB -- Piotrek
