The following public key can be used to verify RPM packages built
and signed by Red Hat, Inc. using `rpm -K' using the GNU GPG
package.

Questions about this key should be sent to security@redhat.com.

-----BEGIN PGP PUBLIC KEY BLOCK-----

Version: GnuPG v1.0.0 (GNU/Linux)

Comment: For info see http://www.gnupg.org

mQGiBDfqVEqRBADBKr3Bl6PO8BQ0H8sJoD6p9U7Yyl7pjtZqioviPw
XP+DCWd4u8HQzcxAZ57m8ssA1LK1Fx93coJhDzM130+p5BG9mY
SPShLabR3N1KXdXAYYcowTOMGxdwYRGr1Spw8QydLhjVfU1VSl4x
t6bupPbFJbyjkg5Z3P7BlUOUJmrx3wCgobNVEDGaWYJcch5z5B1of
/41G8kEAKii6q7Gu/vhXXnLS6m15oNnPVybyngiw/23dKjSti/PYrrL2
11P2ed0x7zm8v3gLrY0cue1iSba+8glY+p31ZPOr5ogaJw7ZARgoS
8BwjyRymXQp+8Dete0TELKOL2/itDOPGHW07SsVWOR6cmX4VlRR
cWB5KejaNvdrE54XFtOd04NMgWI63uqZc4zkRa+kwEZtmbz3tHSd
WCCE+Y7YVP6IUf/w6YPQFQriWYFiA6fD10eB+BlIUqIw80EqjsBKm
CwvKkn4jg8kibUgj4/TzQSx77uYokw1EqQ2wkOZoaEtcubsNMquu
LCMWijYhGBBgRAgAGBQI36lRyAAoJECGRgM3bQqYOhyYAnj7hVDY
/FJAGqmtZpwVp9IlitW5tAJ4xQApr/jNFZCTksnI+4O1765F7tA==
=3AHZ

-----END PGP PUBLIC KEY BLOCK-----

rpm --import key_file

# rpm --import RPM-GPG-KEY

# rpm --checksig xtoolwait-1.3-3.src.rpm

xtoolwait-1.3-3.src.rpm: (sha1) dsa sha1 md5 gpg OK

$ rpm -qa | grep -i gpg

gpg-pubkey-db42a60e-37ea5438