Not *your* email address, the sender's email address. A GPG key has
email addresses associated with it, but if the email address from which
the message was sent does not match one of the email addresses attached
to the key, it will say the signature is good but that it cannot verify
the sender (which is correct).
Not *your* email address, the sender's email address. A GPG key has
email addresses associated with it, but if the email address from which
the message was sent does not match one of the email addresses attached
to the key, it will say the signature is good but that it cannot verify
the sender (which is correct).