Translations:Handbook:Parts/Working/Features/60/en

To configure portage to validate the snapshots, first create a truststore in which the keys of the Gentoo Infrastructure responsible for signing the Portage tree snapshots are stored. Of course, this GPG key can be validated as per the proper guidelines (like checking the key fingerprint). The list of GPG keys used by the release engineering team is available on their project page.