On 08.Jul.2014, at 22:45, Ulf Volmer <u.volmer at u-v.de> wrote: > On 07/08/2014 04:07 PM, Rufe Glick wrote: >> Hello there. I've just downloaded the CentOS v7.0 via torrent and am >> trying to verify the gpg signature for the file with hashes. When I do >> "gpg --verify sha256sum.txt.asc" I get the key ID of F4A80EB5. Then I'm >> trying to get the public key with "gpg --keyserver pgp.mit.edu --recv-keys >> F4A80EB5" command. The gpg returns error of "no valid OpenPGP data found". >> Does anyone have an idea of why the public key isn't there? Is there >> another keyserver I should try? > > Yes, unfortunately the key is not available on the web or in the > announcement mail. > > The only place i found the key was in the downloaded iso: > > sudo mount -o loop CentOS-7.0-1406-x86_64-DVD.iso /mnt > gpg --import /mnt/RPM-GPG-KEY-CentOS-7 you will find them also online on http://mirror.centos.org/centos/ -- Markus