I downloaded the newest model of Core on my Mac and I am caught on step 7 of the verification directions on the Bitcoin Core web site:
7. Bitcoin releases are signed by quite a few people, every with a novel public key. With a view to acknowledge the validity of signatures, you need to use GPG to load these public keys domestically. Yow will discover many developer keys listed within the bitcoin-core/guix.sigs repository, which you’ll be able to then load into your GPG key database.
For instance, you may load the important thing builder-keys/fanquake.gpg by downloading the file as fanquake.gpg and utilizing this command:
gpg –import fanquake.gpg
The output of the command above ought to say that one key was imported, up to date, has new signatures, or remained unchanged.
I’ve downloaded GPG Keychain, downloaded some .gpg recordsdata from the hyperlink above and opened them into GPG Keychain. However which of them I select, the way to confirm, and many others. simply hasn’t clicked.
In just a few circumstances I matched the Fingerprint of a developer in GPG Keychain to the Fingerprint they posted on their web site or social media web page. Is that verifying appropriately, although?
And is the ultimate step on this part coming into “gpg –import fanquake.gpg” (or the identify of the file) into my Terminal to confirm? If that is the case, I am nonetheless unsure what to confirm after coming into the command.
Thanks.
I downloaded the newest model of Core on my Mac and I am caught on step 7 of the verification directions on the Bitcoin Core web site:
7. Bitcoin releases are signed by quite a few people, every with a novel public key. With a view to acknowledge the validity of signatures, you need to use GPG to load these public keys domestically. Yow will discover many developer keys listed within the bitcoin-core/guix.sigs repository, which you’ll be able to then load into your GPG key database.
For instance, you may load the important thing builder-keys/fanquake.gpg by downloading the file as fanquake.gpg and utilizing this command:
gpg –import fanquake.gpg
The output of the command above ought to say that one key was imported, up to date, has new signatures, or remained unchanged.
I’ve downloaded GPG Keychain, downloaded some .gpg recordsdata from the hyperlink above and opened them into GPG Keychain. However which of them I select, the way to confirm, and many others. simply hasn’t clicked.
In just a few circumstances I matched the Fingerprint of a developer in GPG Keychain to the Fingerprint they posted on their web site or social media web page. Is that verifying appropriately, although?
And is the ultimate step on this part coming into “gpg –import fanquake.gpg” (or the identify of the file) into my Terminal to confirm? If that is the case, I am nonetheless unsure what to confirm after coming into the command.
Thanks.
