 |
|
RPMs can be produced with PGP signatures. All RPMs built by Red Hat for example are signed with Red Hat's PGP signature. This helps to insure the integrity and origin of the package. To check the signature of an RPM use this command:
rpm -checksig <package_file>