Hi. When I performed a zypper refresh & update I get the following message for 2 repositories I added for the application “R”. I’d like to know what happens in 7 days after the signing file expires? Can the repo be trusted after that? Should I notify someone of the key expiration?
Thanks.
XXXX@Tumbleweed:~> sudo zypper refresh && zypper update
[sudo] password for root:
Retrieving repository 'R-patched' metadata ---------------------------------------------------------------------------------------------------\]
The gpg key signing file 'repomd.xml' will expire in 7 days.
Repository: R-patched
Key Name: devel:languages:R OBS Project <devel:languages:R@build.opensuse.org>
Key Fingerprint: 4BAAC60A 1E50F188 B7ACB3CD A35CB059 793371FE
Key Created: Wed 18 Nov 2009 06:40:30 AM EST
Key Expires: Sat 10 Sep 2016 09:33:18 PM EDT (expires in 7 days)
Rpm Name: gpg-pubkey-793371fe-4b03dd2e
Retrieving repository 'R-patched' metadata ---------------------------------------------------------------------------------------------------[done]
Building repository 'R-patched' cache ---------------------------------------------------------------------------------------------------[done]
Retrieving repository 'R-released' metadata ---------------------------------------------------------------------------------------------------/]
The gpg key signing file 'repomd.xml' will expire in 7 days.
Repository: R-released
Key Name: devel:languages:R OBS Project <devel:languages:R@build.opensuse.org>
Key Fingerprint: 4BAAC60A 1E50F188 B7ACB3CD A35CB059 793371FE
Key Created: Wed 18 Nov 2009 06:40:30 AM EST
Key Expires: Sat 10 Sep 2016 09:33:18 PM EDT (expires in 7 days)
Rpm Name: gpg-pubkey-793371fe-4b03dd2e