MonetDB Download Area
Name Last modified Size Description
Parent Directory - Fedora/ 2016-06-23 09:43 - MonetDB Fedora RPMs & YUM repository FreeBSD/ 2017-06-12 14:49 - MonetDB FreeBSD installers Java-Experimental/ 2017-05-19 11:04 - MonetDB Java interfacing: JDBC driver & JdbcClient app Java/ 2017-03-30 17:44 - MonetDB Java interfacing: JDBC driver & JdbcClient app MacOSX/ 2017-06-12 14:49 - MonetDB Mac OS X installers MonetDB-GPG-KEY 2008-11-18 15:46 1.9K MonetDB public key PHP/ 2016-12-21 14:06 - Perl/ 2016-12-21 14:06 - Python/ 2016-12-21 14:06 - Solaris/ 2017-06-12 14:49 - MonetDB Solaris installers Windows/ 2017-06-12 14:49 - MonetDB Windows installers archive/ 2015-10-20 13:05 - Old MonetDB distributions deb/ 2017-05-03 13:04 - MonetDB Debian and Ubuntu repository epel/ 2016-12-20 16:34 - MonetDB EPEL (Red Hat, CentOS, Scientific Linux) RPMs & YUM repository ruby/ 2016-09-14 14:18 - sources/ 2017-06-12 14:49 - MonetDB source distributions testing/ 2017-05-29 15:40 - MonetDB release candidates
In various directories there is a file SHA256SUM which contains the sha256 checksum of the files in that directory. This SHA256SUM file is signed using the key of which the public part is available in the file MonetDB-GPG-KEY. This key is also available from keyservers:
gpg --recv-key 0x0583366F
You should check the fingerprint of the key:
gpg --fingerprint 0x0583366F
The fingerprint is:
213E 64DC D5DD C2C0 63CC 39FD 053C 3ED4 0583 366F.
You can then download the SHA256SUM file and check that it hasn't been tampered with:
gpg --verify SHA256SUM
Among other output, you should see the message
gpg: Good signature from "MonetDB Database System Packager <email@example.com>"
You should also see the message that the signature was made using the DSA key ID 0583366F (same number as mentioned above).
After this, you can verify that the downloaded files are correct:
sha256sum --check SHA256SUM
For all files you downloaded, you should see the name of the file followed by the work "OK".
In addition, all RPM files and DEB packages are also signed with this key. See the Fedora, epel (for Enterprise Linux), and deb (for Debian and Ubuntu) directories for more details.
Further information about the "Dec2016-SP1" release is available in the release notes.