Hadrian, I downloaded the 2.9.2-src and the corresponding PGP signature file, but gpg says no valid OpenPGP data found.
I tried the same with the 2.9.2 Windows binary distribution and gpg says Good Signature. Is there an issue with the signing of the 2.9.2-src? I even tried the 2.8.5-src and got the same error. C:\Users\henley\Downloads>ls -l apache-camel-2.9.2* -rw-rw-rw- 1 user group 18496414 May 2 17:05 apache-camel-2.9.2-src.zip -rw-rw-rw- 1 user group 31003 May 3 16:53 apache-camel-2.9.2-src.zip.asc -rw-rw-rw- 1 user group 14976627 May 3 16:55 apache-camel-2.9.2.zip -rw-rw-rw- 1 user group 836 May 3 16:55 apache-camel-2.9.2.zip.asc C:\Users\henley\Downloads>gpg --verify apache-camel-2.9.2-src.zip.asc gpg: no valid OpenPGP data found. gpg: the signature could not be verified. Please remember that the signature file (.sig or .asc) should be the first file given on the command line. C:\Users\henley\Downloads>gpg --verify apache-camel-2.9.2.zip.asc gpg: Signature made 04/12/12 07:52:30 Central Daylight Time using RSA key ID 6A70C608 gpg: Good signature from "Hadrian Zbarcea <hadr...@apache.org>" gpg: WARNING: This key is not certified with a trusted signature! gpg: There is no indication that the signature belongs to the owner. Primary key fingerprint: 4AAC 7338 D125 F866 4167 6AF6 1522 6672 6A70 C608 Greg -- View this message in context: http://camel.465427.n5.nabble.com/ANNOUNCE-Apache-Camel-2-9-2-Released-tp5649281p5684440.html Sent from the Camel - Users mailing list archive at Nabble.com.
