Permalink
Switch branches/tags
Nothing to show
Find file Copy path
Fetching contributors…
Cannot retrieve contributors at this time
155 lines (106 sloc) 5.48 KB
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Mumble GPG keys
===============
(Last-Updated: 2018-03-04)
Mumble source tarballs (as well as some other products) are digitally signed via GPG.
This document lists the GPG keys that were used to sign various Mumble releases and
snapshots.
- mkrautz (GPG: 41BCDD10)
All products built in 2018
==========================
All of our build products (tarballs, zip files, MSI installers,
DMG disk images and stand-alone binaries) are GPG signed, and have
a detached GPG signature to go along with them.
The detached signatures are named <original-file-name>.sig, and
are ASCII-armoured.
Our downloads are available at the address https://dl.mumble.info.
For example, a released product called "product-1.0.tar.gz" would
be available at
https://dl.mumble.info/product-1.0.tar.gz
and its detached signature would be available at
https://dl.mumble.info/products-1.0.tar.gz.sig
The signing of our build products is entirely automatic, and happens
inside the Mumble build infrastructure.
Our build products are signed with the following GPG key:
pub 4096R/B858BD0E 2018-03-04 [expires: 2019-01-01]
Key fingerprint = F3F5 324A 14AD 0B32 568F 7839 F041 3B5C B858 BD0E
uid Mumble Automatic Build Infrastructure 2018 <mumble-auto-build-2018@mumble.info>
The key is available as "mumble-auto-build-2018.asc" in this Git repository.
(SHA256: 6e9f5500dbcdbef5f0854a29bf18984025214796031fc0cd80506818599c2265)
All products built in 2017
==========================
All of our build products (tarballs, zip files, MSI installers,
DMG disk images and stand-alone binaries) are GPG signed, and have
a detached GPG signature to go along with them.
The detached signatures are named <original-file-name>.sig, and
are ASCII-armoured.
Our downloads are available at the address https://dl.mumble.info.
For example, a released product called "product-1.0.tar.gz" would
be available at
https://dl.mumble.info/product-1.0.tar.gz
and its detached signature would be available at
https://dl.mumble.info/products-1.0.tar.gz.sig
The signing of our build products is entirely automatic, and happens
inside the Mumble build infrastructure.
Our build products are signed with the following GPG key:
pub 4096R/625297A0 2017-01-08 [expires: 2017-12-31]
Key fingerprint = C466 6C67 67A2 6017 CE68 4069 8804 8D0D 6252 97A0
uid Mumble Automatic Build Infrastructure 2017 <mumble-auto-build-2017@mumble.info>
The key is available as "mumble-auto-build-2017.asc" in this Git repository.
(SHA256: 7dbd714b3e04ae939ab0684aec30d4ff65d696d86b2ed9031021eea551f8810b)
All products built in 2016
==========================
All of our build products (tarballs, zip files, MSI installers,
DMG disk images) are GPG signed, and have a detached GPG signature
to go along with them.
The detached signatures are named <original-file-name>.sig, and
are ASCII-armoured.
Our downloads are available at the address https://dl.mumble.info.
For example, a released product called "product-1.0.tar.gz" would
be available at
https://dl.mumble.info/product-1.0.tar.gz
and its detached signature would be available at
https://dl.mumble.info/products-1.0.tar.gz.sig
The signing of our build products is entirely automatic, and happens
inside the Mumble build infrastructure.
Our build products are signed with the following GPG key:
pub 4096R/5A2BE0C1 2016-01-01 [expires: 2017-01-01]
Key fingerprint = 3BD0 ECA5 9253 19AF 89C2 5865 B585 609C 5A2B E0C1
uid Mumble Automatic Build Infrastructure 2016 <mumble-auto-build-2016@mumble.info>
The key is available as "mumble-auto-build-2016.asc" in this Git repository.
(SHA256: 38c20a7efec7873963c4603e4475b2974c42064a4b8086db06760af8b1b23703)
All products built in 2015
==========================
All of our build products (tarballs, zip files, MSI installers,
DMG disk images) are GPG signed, and have a detached GPG signature
to go along with them.
The detached signatures are named <original-file-name>.sig, and
are ASCII-armoured.
The signing is entirely automatic, and happens inside the Mumble
build infrastructure.
The products are signed with the following GPG key:
pub 4096R/751B4695 2015-01-01 [expires: 2016-01-01]
Key fingerprint = 710E 91FD F428 4F2E 69E0 DEBD D744 6C0F 751B 4695
uid Mumble Automatic Build Infrastructure 2015 <mumble-auto-build-2015@mumble.info>
The key is available as "mumble-auto-build-2015.asc" in this Git repository.
(SHA256: b89ef0507d0f7f911469b420a3c71350eb84fb688b3aa55c1b62139f7b7f0a87)
Earlier signing history
=======================
Please see the 'gpg-2014.txt' file in this repository.
-----BEGIN PGP SIGNATURE-----
Comment: GPGTools - https://gpgtools.org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=Qq4b
-----END PGP SIGNATURE-----