Hi,
First of all congratulations with the final release of CentOS 7!
I downloaded the new CentOS (netinstall) iso. I can verify the SHA256 checksum, but I can't verify the supplied sha256sum.txt.asc file signature with gpg.
The RSA key with key ID 0xF4A80EB5 is not found on public keyservers like pks.sourceforge.net and pool.sks-keyservers.net.
The commands I tried:
$gpg --keyserver pool.sks-keyservers.net --recv-key 0xF4A80EB5
gpg: requesting key F4A80EB5 from hkp server pool.sks-keyservers.net
gpg: no valid OpenPGP data found.
gpg: Total number processed: 0
$gpg --verify sha256sum.txt.asc
gpg: Signature made 07/07/14 11:41:49 Romance Summer Time using RSA key ID F4A80EB5
gpg: Can't check signature: No public key
Can you publish the CentOS verification key with ID F4A80EB5?
CentOS verify install iso using gpg signature
Re: CentOS verify install iso using gpg signature
Thanks for the hint! I didn't realize that I just needed to use the RPM key.