Due to some infrastructure problems, I couldn't offer GPG verification details for the distribution archive in my earlier announcement. Please find them below. At 2023-02-04T12:48:20-0600, G. Branden Robinson wrote: > groff 1.23 release candidate 2, 1.23.0.rc2, is now available from GNU's > alpha FTP site. You may download the distribution archive from there. > > https://alpha.gnu.org/gnu/groff/ [...] Obtaining groff =============== This release candidate is available from alpha.gnu.org. Here are the compressed sources and a GPG detached signature[*]. http://alpha.gnu.org/gnu/groff/groff-1.23.0.rc2.tar.gz http://alpha.gnu.org/gnu/groff/groff-1.23.0.rc2.tar.gz.sig Here are the SHA-1 and SHA-256 checksums. 4491287b7e17f5d886fafb5613deab0d978c47e3 groff-1.23.0.rc2.tar.gz +bCEV52n4Z26KdgIVwsyS9tIWeJ7bP+c++YsDh/mOFU= groff-1.23.0.rc2.tar.gz The SHA-256 checksum is encoded in Base64 instead of the hexadecimal form that most checksum tools default to. The mechanism follows. sha256sum < groff-1.23.0.rc2.tar.gz | cut -f1 -d\ | xxd -r -p | base64 Thanks to Bertrand Garrigues for his assistance in preparing this RC. [*] Use a .sig file to verify that the corresponding file (without the .sig suffix) is intact. First, be sure to download both the .sig file and the corresponding archive. Then, verify the archive. gpg --verify groff-1.23.0.rc2.tar.gz{.sig,} If that command fails because you don't have the required public key, you can import it. gpg --keyserver pgp.mit.edu --recv-keys \ 2D0C08D2B0AD0D3D8626670272D23FBAC99D4E75 Re-run the 'gpg --verify' command subsequently. Regards, Branden
Attachment:
signature.asc
Description: PGP signature
