From 5196f73d5128003844df9f4501d876020c850571 Mon Sep 17 00:00:00 2001
From: Ken Dreyer <kdreyer@redhat.com>
Date: Jan 18 2022 15:55:09 +0000
Subject: docs: explain "digest" vs "signature" fields for RPMs


---

diff --git a/docs/source/signing.rst b/docs/source/signing.rst
index cbc101f..4f2b2f0 100644
--- a/docs/source/signing.rst
+++ b/docs/source/signing.rst
@@ -38,7 +38,8 @@ the public GPG key into their RPMDB::
       Payload SHA256 digest: OK
       MD5 digest: OK
 
-Note there is no "RSA/SHA256 Signature" header field on the RPM here.
+Note there are only "digest" fields here, no "Signature" fields since this RPM
+is unsigned.
 
 *Example: A GPG signature that rpmdb DOES trust*::