Date: Thu, 4 Nov 2021 19:17:42 +0000 From: Glen Barber <gjb@freebsd.org> To: Pat <cli_junkie@protonmail.com> Cc: "freebsd-security@freebsd.org" <freebsd-security@freebsd.org> Subject: Re: Expired key for signed checksums Message-ID: <20211104191742.GK69504@FreeBSD.org> In-Reply-To: <UP-f63qDEWMLjjb592fxz6MgOmqFHaqRw5N29C5MT7lEwW6rW_KQgbPq8YtndIiKHt536m3yk5CSSsbsdVrtTarWdicc_zIgoQoY2llBb4k=@protonmail.com> References: <UP-f63qDEWMLjjb592fxz6MgOmqFHaqRw5N29C5MT7lEwW6rW_KQgbPq8YtndIiKHt536m3yk5CSSsbsdVrtTarWdicc_zIgoQoY2llBb4k=@protonmail.com>
next in thread | previous in thread | raw e-mail | index | archive | help
--jcZk2Ix8j3PVOBnV Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Thu, Nov 04, 2021 at 07:01:50PM +0000, Pat via freebsd-security wrote: > Hello, >=20 > I am trying to verify the signed checksum file for FreeBSD 13, but the ke= y that > gets checked is showing to be expired: > $ gpg --keyserver-options auto-key-retrieve \ > --keyserver hkps://keyserver.ubuntu.com:443 \ > --verify CHECKSUM.SHA256-FreeBSD-13.0-RELEASE-amd64.asc > gpg: Signature made Tue Apr 13 10:45:44 2021 CDT > gpg: using RSA key 8D12403C2E6CAB086CF64DA3031458A5478FE293 > gpg: requesting key 031458A5478FE293 from hkps server keyserver.ubuntu.com > gpg: key 524F0C37A0B946A3: 76 signatures not checked due to missing keys > gpg: key 524F0C37A0B946A3: public key "Glen Barber <gjb@FreeBSD.org>" imp= orted > gpg: no ultimately trusted keys found > gpg: Total number processed: 1 > gpg: imported: 1 > gpg: Good signature from "Glen Barber <gjb@FreeBSD.org>" [expired] > gpg: aka "Glen Barber <glen.j.barber@gmail.com>" [expired] > gpg: aka "Glen Barber <gjb@keybase.io>" [expired] > gpg: aka "Glen Barber <gjb@glenbarber.us>" [expired] > gpg: Note: This key has expired! > Primary key fingerprint: 78B3 42BA 26C7 B2AC 681E A7BE 524F 0C37 A0B9 46A3 > Subkey fingerprint: 8D12 403C 2E6C AB08 6CF6 4DA3 0314 58A5 478F E293 >=20 > It does not matter what keyserver I try, I get the same expiration messag= e. Yet > I see the key expiration was bumped[0]. How would I go about getting the = updated > key? Or am I just going about this all wrong? >=20 https://docs.freebsd.org/en/articles/pgpkeys/#_glen_barber_gjbfreebsd_org Glen --jcZk2Ix8j3PVOBnV Content-Type: application/pgp-signature; name="signature.asc" -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEjRJAPC5sqwhs9k2jAxRYpUeP4pMFAmGEMdYACgkQAxRYpUeP 4pOb4Q//Wc9ccrIWoYvZHokDPWnSqQp8nJxfMsyiNgom35gNjSPdfBUsBs8pm67E QG65LKIquu6V5IKP01AiVUkDzFjoB6zlNTEUfYQv0kSRbjMhvV2yElNikPvTQyBU 8NlBFzHhOsC9rOf6Lm26a+lAwPTWKZ2l6o9wDa/wBMY822RMWXUzmHQpB3LcjDdU m4XAMkSNGcbuGMQrDbXBqfatihLeUgEnnoGgZWbUwvfJrkH6wFF4BI0BGbwzY7ld 9qCqI2u2lNVSSWyNaStgstwm5VpWY8JuH4fdCQqaA4WrtdfSovfNfzAmvyhzw7jz B3nKAWsMyt97Xy7RnOI5u8HsaLqgPmpSNKk8Y0rZcBEokY+lJ7ZK5rMfMG5oYKUE Zi+DoFwBnXx7bD3KbgAoZ2XzqiIe21F+/3nSv/GhuuGKQz0NuaEQFbGUum1YPFkr q3G2qVajhUxQQh336O4s6+89KcSmFvrIv9mD6kkYo5XhpIZfGY4SFqBAuUfSEUgA i6LGrooMMBZATFIvHZNjllUOHhDDU+kLyvUloLWDQE9HjexZtNeiVTpBpLFQOJyW f3iuwOsPo8C64MME6ksulU9ecXoA89WkruZgAabg8R0ZQdHALEUfYCLzAUV8dsHi Kn1irNTlmBNbfE5Vs7obQSJtFF6pzoyldk1H/DnS1QPeH0gStUo= =Bujy -----END PGP SIGNATURE----- --jcZk2Ix8j3PVOBnV--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20211104191742.GK69504>