Import missing key for RPM-GPG-KEY-rockyinfra (AA65 0F52 D6C0 94FA)

[mattborja]

Imports missing public key information for RPM-GPG-KEY-rockyinfra (AA65 0F52 D6C0 94FA)

Fingerprint: BFC3D8F20D15F4FD46281D7FAA650F52D6C094FA

Sources:

• Original GPG Key Info page: https://rockylinux.org/keys/ (web archive)
• Downloads: https://dl.rockylinux.org/pub/rocky/

[NeilHanlon]

Hi -- I don't believe we have ever used this key. It was generated in case we needed it, but we haven't needed to yet.

Are you seeing something that is signed using this key?

[mattborja]

@NeilHanlon Hi. I haven't seen it used to sign anything for downloads on my end.

I haven't used Rocky linux in a while, but when I was verifying, it would've been using Rocky Linux 8/9 Release signing keys.

The proposed update arises from other GPG and keyring related maintenance (including some re-validating) I'm currently doing, and just noticed this additional key that seemed to now be missing in the new location.

Which, along those lines, I also sent out an email earlier today to [email protected] and the original committer seeing if it was possible to bring back the GPG Key Info page onto the new documentation site for public verification purposes. Not sure if that's also something you handle, but wanted to throw it out there as well.

Thanks!

[NeilHanlon]

Gotcha -- thanks for confirming! Just wanted to make sure.

I've had our web team add a redirect for the GPG key page. It looks like we misplaced a link for it during our site revamp: rocky-linux/rockylinux.org#128

In the meantime, you can see the page at https://rockylinux.org/resources/gpg-key-info

[mattborja]

Awesome, thanks for the quick turnaround on that!

Love what you guys are doing 👊