I think this is what the apache download page says to do to check the signature of the downloaded file....
c:\Users\MyName\Documents>"c:\Program Files\GNU\GnuPG\gpg.exe" --verify apache.asc gpg: no signed data gpg: can't hash datafile: file open error That did not work so well...SOOO... This is what I did... Does this output mean everything is ok? It seems mostly ok... c:\Users\MyName\Documents>"c:\Program Files\GNU\GnuPG\gpg.exe" --verify apache.asc c:\Users\MyName\Desktop\apache-ant-1.7.1-bin.zip gpg: Signature made 06/27/08 00:50:34 using DSA key ID AA0077B0 gpg: Good signature from "Kev Jackson (apache key) <[EMAIL PROTECTED]>" gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. Primary key fingerprint: F54C 925C 2454 F21D 8669 2540 A0BF F93D AA00 77B0_______________________________________________ Bug-coreutils mailing list [email protected] http://lists.gnu.org/mailman/listinfo/bug-coreutils
