Quote from: Mcrad on May 06, 2013, 11:44 pmso did i do this right. the key was verified as good:)-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA1i think this is right:)-----BEGIN PGP SIGNATURE-----Version: GnuPG v2.0.19 (GNU/Linux)iQEcBAEBAgAGBQJRiEA1AAoJEGOBg5DwP9EOzUMH/0YfGa714mZGAlID3GNMGg3y1TJ/dlW1bv7wrdTAPoeYzjRmDDtRZCBwKaQuvzC04QE4CHiGnuhqpMqLr2CP9kGnzJfFNc6kiIP9agm8cv8uuqh58Rr5FpgB34APSF31QhxDhrA2cV6fU7kjzxgWNi0sZLA9IN0y/msWTQGlg9PAWd+/mlASBGr+sWswi1dehkx3dmmhZfopV7eRg5RKzIIjZM1eCeLbgTifAFi5Hb+wA5PZ1lyrohMPUQYCWaHv7HahsUph2nvB1OZQYMjeueJacZ6MVTlYIDtrKXyDlXnSH7F8+a/Pg3KAcu8Di+JU9+Yt1zTIqKFJuSg918z02xw==/ZIx-----END PGP SIGNATURE-----No, you've produced a signed PGP message. Which is a good thing to do in lots of situations, but it doesn't help you here. If I had your public key I could prove you wrote "i think this is right:)" up there, although that's not what we want right now.PGP Signing is like PGP encryption, and PGP Verification is like PGP decryption. In other words, Signing and Verification are two halves of a whole.In the GPA that comes with GPG4WIN, you go to the list of public keys and find DPR's public key (if you don't have it, it needs to be imported).Then, and this is the most important part for you so pay careful attention: Find the option in the GPA that allows you to sign a key locally. When you find it, make sure you toggle it (I originally thought it was in the context menu of the GPA's key chain, but apparently not and I can't double check this right now).Then, the second step is to copy paste DPR's PGP Signed message into the clipboard of the GPA. Then click "Verify" and view the results. That's it.With other version of GPG, signing the public key of somebody who sent you a signed message is not necessary. I appreciate all this sounds wildly confusing at first, but pay attention and think it through and you'll get it. Then like all things, once you have it down it'll seem very easy.Edit: Millennium Pine! Yeah! 2013 here I come! :D