Background information: I have a directory full of files and detached .asc
signatures. I also have my default keyring which includes many public keys of people (some of whom I trust and others I don't).
If I verify all files in the directory, gpg outputs something similar to the following for each file:
Signature made XXX using RSA key ID XXXX
Good signature from SIGNER
My issue stems from needing to check these lines for each file to make sure that the signer is who I expect it to be. What I would like to do is limit which public key gpg can use to verify files.
Question: Is it possible to configure gpg to only use one public key to verify files?
One solution is to use a new temporary keyring (with only one key) every time I needed to verify files. But this solution quicky becomes tedious if I need to do it more than a few times.