PGP: signed documents
Documents are signed by prefixing them with signature certificates, which contain the key ID of the
key that was used to sign it, a secret-key-signed message digest of the document, and a timestamp
of when the signature was made. The key ID is used by the receiver to look up the sender's public
key to check the signature. The receiver's software automatically looks up the sender's public key
and user ID in the receiver's public key ring.
Updated December, 1999
email@example.com and firstname.lastname@example.org