You learned PGP from the documentation. I configured my client to work in the real world, specifically the anonymous darknets. We don't use a web of trust here, so it's irrelevant. You have no need to re-import a key multiple times, as none of them are signed, and signing them yourself is a useless chore. The whole key signing mechanism can and should be ignored with trust-model always. That comment was fixed in a newer version that I posted a few months ago. Since most PGP programs don't use it, you will constantly see these warnings, and they will be false positives. They are mostly useless and can be ignored.