On Fri, 17 Oct 2025 22:06, Ingo Klöcker said: > certificate published at > https://gpg4win.org/package-integrity.html > has expired. That's correct. Werner should update the list of gpg4win code
Actually I was not aware that someone(tm) put the X.509 certificate details for AuthentiCode there. I see no real need in this because the PKI should guarantee that this is a valid one. We use Authenticode only because Microsoft demands that and some sites only allow running programs with Authenticode signatures. For package integrity we use *PGP signatures. Salam-Shalom, Werner -- The pioneers of a warless world are the youth that refuse military service. - A. Einstein
openpgp-digital-signature.asc
Description: PGP signature
_______________________________________________ Gnupg-users mailing list [email protected] https://lists.gnupg.org/mailman/listinfo/gnupg-users
