Finding Microsoft’s public PGP/GPG keys for package file download verification

Microsoft's package delivery uses PGP (GnuPG) keys to implement file integrity in many packages it shares for example for the Linux platform.

But, as with all public key cryptography, you will need a copy of the public keys to be able to verify package integrity. Where would you find those public keys for Microsoft, then?

Turns out they are publicly (as they should) available right here:

https://packages.microsoft.com/keys/microsoft.asc

This is a plain old text file (with Unix-style line endings), so you should be able to view it with any text editor.

Hope this helps!