Getting GPG signature verification error The following signatures were invalid: NODATA 1 NODATA 2

P. J. McDermott pjm at
Fri Jan 28 16:43:21 UTC 2011

On 01/28/2011 10:43 AM, shirish शिरीष wrote:
> Hi Mike,
>         Today while updating the distribution I got the following error :-
> W: A error occurred during the signature verification. The repository
> is not updated and the previous index files will be used. GPG error:
> ./ Release: The following signatures were
> invalid: NODATA 1 NODATA 2
> I do not know why this error came. I have just couple of months ago
> started with Debian on a Squeeze snapshot (which means the legacy
> issues which you have mentioned in the webpage shouldn't happen/be
> there)
> I refer to the instructions given here :-
> "You can thus also expect the last signature validation to differ
> depending on the Debian keyring version you use. "
> Now does it mean that I need to install a new version of Debian-keyring ?
> I have got Debian keyring version 2010.12.29

I don't know much about PGP keys, so I could be wrong, but I think you
may have to update your Mozilla archive key.
gives the following command to do this:
  $ GET | gpg --import

I checked the HTTP headers of that archive.asc file, and I see this:
  Last-Modified: Sun, 09 Jan 2011 15:37:42 GMT

So if you started using these Mozilla packages a couple months ago, you
probably just have an out of date key.

P. J. McDermott

More information about the pkg-mozilla-maintainers mailing list