For clarification: Matthew had sent me the public part of the correct key when he set it up. That's why it was in my local keyring. But it appears that a different key was appended to the KEYS file.
On Thu, 27 Jul 2023 at 05:16, PJ Fanning <fannin...@apache.org> wrote: > > I think Matthew added the wrong public key to the KEYS file. > > On Thu, 27 Jul 2023 at 05:13, PJ Fanning <fannin...@gmail.com> wrote: > > > > I removed that key from my local keyring and reimported the KEYS file > > and now see the signing issue that Justin sees. > > > > When I do a `gpg --list-keys`, I see expired dates. > > > > pub rsa4096 2021-03-06 [SC] > > EB6E3A774E3AC69B6013CB1DB3C5F3C4B9E13254 > > uid [ unknown] Matthew de Detrich <mdedetr...@gmail.com> > > sub rsa4096 2021-03-06 [E] > > > > I'm not sure what is going on. > > > > On Thu, 27 Jul 2023 at 05:10, <jus...@classsoftware.com> wrote: > > > > > > Hi, > > > > > > I did: > > > > > > curl https://dist.apache.org/repos/dist/dev/incubator/pekko/KEYS > KEYS > > > > > > before the import, so I guess there an issue with that KEYS file? > > > > > > Justin > > > > > > > > > > On 27 Jul 2023, at 2:03 pm, PJ Fanning <fannin...@apache.org> wrote: > > > > > > > > This is a new key that Matthew set up. > > > > > > > > On Thu, 27 Jul 2023 at 05:00, <jus...@classsoftware.com> wrote: > > > >> > > > >> Hi, > > > >> > > > >> I get this: > > > >> > > > >> gpg --import KEYS > > > >> gpg: key 0C69C1EF41181E13: "PJ Fanning <fannin...@yahoo.com>" not > > > >> changed > > > >> gpg: key B3C5F3C4B9E13254: "Matthew de Detrich <mdedetr...@gmail.com>" > > > >> not changed > > > >> gpg: Total number processed: 2 > > > >> gpg: unchanged: 2 > > > >> MacBook-Pro-3:PekkoKafka justinmclean$ gpg --no-secmem-warning > > > >> --verify > > > >> apache-pekko-connectors-kafka-1.0.0-incubating-src-20230726.zip.asc > > > >> gpg: assuming signed data in > > > >> 'apache-pekko-connectors-kafka-1.0.0-incubating-src-20230726.zip' > > > >> gpg: Signature made Wed 26 Jul 20:43:04 2023 AEST > > > >> gpg: using RSA key > > > >> 3FD458B4420059F1F97C2563F6A21ED3A05F7F7B > > > >> gpg: Can't check signature: No public key > > > >> > > > >> Your other release validates correctly so I’m not sure what the issue > > > >> is. > > > >> > > > >> Justin > > > >> > > > > > > > > --------------------------------------------------------------------- > > > > To unsubscribe, e-mail: dev-unsubscr...@pekko.apache.org > > > > For additional commands, e-mail: dev-h...@pekko.apache.org > > > > > > > > > > > > > --------------------------------------------------------------------- > > > To unsubscribe, e-mail: dev-unsubscr...@pekko.apache.org > > > For additional commands, e-mail: dev-h...@pekko.apache.org > > > --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@pekko.apache.org For additional commands, e-mail: dev-h...@pekko.apache.org
