GPG Signatures for Selected Components
In an effort to set at ease some folks who are worried about corrupt or infected downloads, I have set up a GPG key to sign certain components. My public key can be found here: virindi.publickey.txt. The key ID is AD0ADB35 and the key fingerprint is B552 6C3B 8BFD 93F9 9715 9223 31E7 1DD1 AD0A DB35.
The Bundle installer as well as the automatic updates system also feature their own signature verification system. All updates are checked against a signature before they are installed, and if verification fails an error is displayed. The public key for this system is builtin to the Bundle installer exe.
Go to the signatures.