Ето кратко примерче, което показва как се проверява дали архива на кърнела е читав:

1. Инсталира се gnupg. В моя случай

emerge gpupg -av

Самата проверка с добавянето на ключа на кернел.орг

m1 src # gpg --keyserver wwwkeys.pgp.net --recv-keys 0x517D0F0E
gpg: requesting key 517D0F0E from hkp server wwwkeys.pgp.net
gpg: /root/.gnupg/trustdb.gpg: trustdb created
gpg: key 517D0F0E: public key "Linux Kernel Archives Verification Key <ftpadmin@kernel.org>" imported
gpg: no ultimately trusted keys found
gpg: Total number processed: 1
gpg:               imported: 1
m1 src # gpg --verify linux-2.6.36.tar.gz.sign linux-2.6.36.tar.gz
gpg: Signature made Thu Oct 21 01:15:36 2010 EEST using DSA key ID 517D0F0E
gpg: Good signature from "Linux Kernel Archives Verification Key <ftpadmin@kernel.org>"
gpg: WARNING: This key is not certified with a trusted signature!
gpg:          There is no indication that the signature belongs to the owner.
Primary key fingerprint: C75D C40A 11D7 AF88 9981  ED5B C86B A06A 517D 0F0E