Gpg verify medkit signature: no valid openPGP

tommo · January 31, 2019, 1:39pm

Going to flash router with latest medkit have downloaded from https://repo.turris.cz/omnia/medkit/

trying to verify signature but gpg reporting no openPGP data in file

$ gpg --verify omnia-medkit-201901140747.tar.gz.sig
gpg: enabled debug flags: memstat
gpg: no valid OpenPGP data found.

Anyone help?

Pepe · January 31, 2019, 1:47pm

Hello,

Yesterday, I tried this method and it’s working:

Would you please try it and let me know if it works for you?

tommo · January 31, 2019, 1:47pm

just to be clear what I’m trying to do:

$ gpg --verify omnia-medkit-201901140747.tar.gz.sig omnia-medkit-201901140747.tar.gz.sha256 
gpg: enabled debug flags: memstat
gpg: no valid OpenPGP data found.

vcunat · January 31, 2019, 1:50pm

These signatures are in a different format than what OpenPGP uses.

tommo · January 31, 2019, 1:52pm

ok thanks - I’ll follow advice on link @Pepe
thanks again

cb474 · June 3, 2021, 11:17pm

I just verified omnia-medkit-latest.tar.gz, using the “signify” package in arch linux. But the correct public key seemed to be release.pub, not test.pub as stated above.