Marko Randjelovic <markoran@eunet.rs> writes: > $ gpg --verify SHA512SUMS.sign SHA512SUMS # attached file > gpg: Signature made Sun 13 Oct 2013 11:19:32 PM CEST using RSA key ID 6294BE9B > gpg: Good signature from "Debian CD signing key <debian-cd@lists.debian.org>" > > $ gpg --verify SHA512SUMS.sign2 SHA512SUMS # http://cdimage.debian.org/debian-cd/7.2.0/amd64/iso-dvd/SHA512SUMS.sign > gpg: Signature made Sun 13 Oct 2013 11:19:31 PM CEST using RSA key ID 6294BE9B > gpg: Good signature from "Debian CD signing key <debian-cd@lists.debian.org>" > > But both signatures are 'Good', but time differs in 1 second. Wow. How did it happen? Where did he take previous signature?
Attachment:
pgpgFcLmQ5ydf.pgp
Description: PGP signature