Hi.
A few months ago i downloaded the then-current Krypton ISO, & today i’ve downloaded the Argon ISO, both from http://download.opensuse.org/repositories/KDE:/Medias/images/iso/ . For each ISO i also downloaded the corresponding sha256 file. I’m having trouble validating the files, & hope someone can help pls.
Via Kleopatra:
Krypton:
Signature created on Monday, 10 July 2017 21:02:25 AEST
With certificate:
[4E8E 6DE2 961F 3083 EAC5 0086 27C0 7017 6F88 BB2F](key:4E8E6DE2961F3083EAC5008627C070176F88BB2F)
The signature is invalid: Signing certificate is expired
Argon:
Signature created on Friday, 13 October 2017 09:30:54 AEDT
With certificate:
[4E8E 6DE2 961F 3083 EAC5 0086 27C0 7017 6F88 BB2F](key:4E8E6DE2961F3083EAC5008627C070176F88BB2F)
The signature is invalid: Signing certificate is expired
For both ISOs:
https://paste.opensuse.org/images/75478946.png
So far none of my online searching has uncovered how to obtain the current signing certificate, but i expect i’m looking in the wrong places. Any clues pls? Do i need to write an email to "KDE OBS Project:, or [hopefully] is there a known-good webpage somewhere holding the missing information?