On 10/02/15 09:33 AM, Dennis Lange wrote: > Ah ok, importing a key != trusted key. > Only to get things sorted. Why I need to accept the import of a key > manually?
They're a new Trusted User and a new archlinux-keyring release with their key hasn't been released. The trust comes from the fact that it has been signed by 3+ master keys though - you should not be marking trust yourself unless you actually want to mark some third party packagers as trusted.
signature.asc
Description: OpenPGP digital signature
