I have downloaded the Manjaro gpg signatures and would like to import them in order to verify the ISO file signatures.
Here is the output from executing the commands in the "Get Manjaro" page: https://pastebin.com/raw/daXV0Pmb
In summary, on my system, importing gpg keys fails (just an example here):
gpg: key CAA6A59611C7F07E: "Philip Müller (Called Little) <email@example.com>" not changed gpg: bad data signature from key 8396F1D05506E82D: Wrong key usage (0x19, 0x2)
and afterwards, executing gpg --verify on the downloaded manjaro-kde-17.1.11-stable-x86_64.iso.sig results in:
gpg --verify Downloads/manjaro-kde-17.1.11-stable-x86_64.iso.sig gpg: no signed data gpg: can't hash datafile: No data
I appear to have all the updates (pacman does not have any updates for me) and I am running version Manjaro Hakoila (17.1.11), also check
$ uname -a Linux desk14 4.16.18-1-MANJARO #1 SMP PREEMPT Tue Jun 26 15:27:59 UTC 2018 x86_64 GNU/Linux
UPDATE: Not sure if it's relevant, but I've had GPG problems before: Pacman-Key init keeps failing.