I bought a larger SSD and want to reinstall 3.2, but gpg verification no more works.
I have a gpg VM where all this verificaion stuff is already installed and worked for 3.1 and 3.2 in the past, so assumed it should work again for the same task, but no. For the signature file of the iso, I pasted it into a file called Qubes-R3.2-x86_64.iso.asc But I get: gpg -v --verify Qubes-R3.2-x86_64.iso.asc Qubes-R3.2-x86_64.iso gpg: no valid OpenPGP data found. gpg: the signature could not be verified. So I suspected it is because developer key lapse after one year and did: gpg --recv-keys 0xC52261BE0A823221D94CA1D1CB11CA1D03FA5082 as instructed here https://www.qubes-os.org/security/verifying-signatures/ It actually imported one key, but verification gives the same failed result. Also tried to import the key associated to iso download [user@gpg iso2]$ gpg --import qubes-release-3-signing-key\(1\).asc gpg: key 03FA5082: "Qubes OS Release 3 Signing Key" not changed gpg: Total number processed: 1 gpg: unchanged: 1 Finally downloaded the iso again, but same result -- You received this message because you are subscribed to the Google Groups "qubes-users" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/qubes-users/CAPzH-qBuqSyL9MkgasjEE3UOycS1AUB_Fv1U0g-C1ZnYgZAxBw%40mail.gmail.com. For more options, visit https://groups.google.com/d/optout.
