GnuPG Public KeyStarting with OpenVPN 1.5.0, all file releases were signed by James Yonan (OpenVPN project founder and maintainer). Later, when OpenVPN 2.3_alpha2 was released, the signer was changed to Samuli Seppänen, the community manager of OpenVPN Technologies, Inc. To verify the file signatures, you need to add the signer's public key to your trusted PGP/GnuPG keyring:
- James Yonan's PGP key (for 1.5.0 -> 2.3_alpha1, signature C699 B264 0C6D 404E 6454 A9AD 1D0B 4996 1FBF 51F3)
- Samuli Seppänen's PGP key (2.3_alpha2 and later, signature 0330 0E11 FED1 6F59 715F 9996 C29D 97ED 198D 22A3)
Signature verification can be performed by PGP or GnuPG once you have the correct key in your trusted keyring:
$ gpg --import keyname.asc
$ gpg -v --verify [.asc file]
Make sure you have the corresponding OpenVPN package in the same directory. GnuPG signature files for OpenVPN file releases are available on the download page.