Hi Enrico, Thank you for your email. I realize that I missed a step in the process. The GPG key I provided is newly generated, and while I have already uploaded it to the public key server, it still needs to be added to the `KEYS` file by a PMC member.
Could you kindly assist me in adding the following GPG key to the `KEYS` file? **GPG Key ID:** `8EAFBA7350DB88EE4C75D6F47F9FB105FE319303` Once the key is added, everyone will be able to proceed with verifying the signatures. Thank you for your help! Best regards, Xiangying On Tue, Jan 21, 2025 at 11:40 PM Enrico Olivelli <eolive...@gmail.com> wrote: > > I have imported the KEYS file > https://downloads.apache.org/pulsar/KEYS > > but I cannot validate the release: > > > > for i in *asc; do gpg --verify $i; done; > gpg: assuming signed data in 'apache-pulsar-manager-0.5.0-bin.tar.gz' > gpg: Signature made Wed 15 Jan 2025 04:25:48 PM CET > gpg: using RSA key 8EAFBA7350DB88EE4C75D6F47F9FB105FE319303 > gpg: Can't check signature: No public key > gpg: assuming signed data in 'apache-pulsar-manager-0.5.0-src.tar.gz' > gpg: Signature made Wed 15 Jan 2025 04:25:57 PM CET > gpg: using RSA key 8EAFBA7350DB88EE4C75D6F47F9FB105FE319303 > gpg: Can't check signature: No public key > > Enrico > > > Il giorno mer 15 gen 2025 alle ore 17:56 xiangying meng < > xiangy...@apache.org> ha scritto: > > > Hello Apache Pulsar Community, > > > > This is a call for the vote to release the Apache Pulsar Manager version > > 0.5.0 > > based on 0.5.0-candidate-1. > > > > Included changes since the previous release: > > > > https://github.com/apache/pulsar-manager/compare/v0.4.0...v0.5.0-candidate-1 > > > > *** Please download, test and vote on this release. This vote will stay > > open > > for at least 72 hours *** > > > > Only votes from PMC members are binding, but members of the community are > > encouraged to test the release and vote with "(non-binding)". > > > > Note that we are voting upon the source (tag), binaries are provided for > > convenience. > > > > The release candidate is available at: > > > > https://dist.apache.org/repos/dist/dev/pulsar/pulsar-manager/pulsar-manager-0.5.0/ > > > > SHA-512 checksums: > > > > 257a4f6e496106a27ade4387cf93b36e6cb7bab9e27ab199576e5f336107eff0a0fc4184f6c71de2301d0d18a98e448f82d4e81b3409f5df00bcc8037dca6763 > > apache-pulsar-manager-0.5.0-bin.tar.gz > > > > 2cfa6abd6868e6a7b68e07c6bf6aef5cf0746b8a7a08087739fcf9259aa1cc4474fa273ad9e1ef428711e9d508ef5458d3200e4265424db6cffaeb92a6bee4f8 > > apache-pulsar-manager-0.5.0-src.tar.gz > > > > The tag to be voted upon: > > v0.5.0-candidate-1 (commit 3a7e4dd34e6ebcdee83622f90a5c1446b8b310dd) > > https://github.com/apache/pulsar-manager/releases/tag/v0.5.0-candidate-1 > > > > Pulsar's KEYS file containing PGP keys you use to sign the release: > > https://downloads.apache.org/pulsar/KEYS > > > > Docker images: > > docker pull yiweiyihang/pulsar-manager:0.5.0-3a7e4dd3 > > > > https://hub.docker.com/layers/yiweiyihang/pulsar-manager/0.5.0-3a7e4dd3/images/sha256-477dc5baa768c202c875658b79cab9b0093cb76cd397eb0671da4ed874fb042c > > > > Please download the source package, and follow the README to build > > and run the Pulsar standalone service. > > > > More advanced release validation instructions can be found at > > https://github.com/apache/pulsar-manager/wiki/Release-Candidate-Validation > > > > Thanks, > > > > Xiangying Meng > >
