[Xmlunit-general] Bad signature on xmlunit 1.3 jar

[Amarendra G. <ag...@br...>]

Hi,

I wanted to highlight that the signature on xmlunit-1.3.jar is bad and
won't verify with the key. However, it verifies fine on the associated .pom
file. Hosted here: https://repo1.maven.org/maven2/xmlunit/xmlunit/1.3/ (we
verified with a download from the official sourceforge site as well).

ag@mac $ gpg --verify xmlunit-1.3.jar.asc xmlunit-1.3.jar
gpg: Signature made Mon Sep 21 12:20:23 2009 PDT
gpg:                using DSA key A2115AE15F6B8B72
gpg: BAD signature from "Stefan Bodewig <bo...@ap...>" [unknown]

Thanks.

-ag

-- 
sent via recycled electrons, from a portable command center.

-- 
This electronic communication and the information and any files transmitted 
with it, or attached to it, are confidential and are intended solely for 
the use of the individual or entity to whom it is addressed and may contain 
information that is confidential, legally privileged, protected by privacy 
laws, or otherwise restricted from disclosure to anyone else. If you are 
not the intended recipient or the person responsible for delivering the 
e-mail to the intended recipient, you are hereby notified that any use, 
copying, distributing, dissemination, forwarding, printing, or copying of 
this e-mail is strictly prohibited. If you received this e-mail in error, 
please return the e-mail to the sender, delete it from your computer, and 
destroy any printed copy of it.