Is this key signed with the old key? Is there a way to check if it all adds up? | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		tinus_hn on June 13, 2019 \| parent \| context \| favorite \| on: Updated GPG Key for Signing Firefox Releases Is this key signed with the old key? Is there a way to check if it all adds up?

ggm on June 13, 2019 [–]

$ gpg --import < /tmp/g1 gpg: key 61B7B526D98F0353: 24 signatures not checked due to missing keys

it's signed by 24 things. I didn't drill down into what, but its obviously highly cross-signed. Somebody could do a sunlight on the key thing about it?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact