Fix _pgpVerifySignature is only check the specified key.
Currently, _pgpVerifySignature checks that the certificate's primary key or a subkey made the signature. Only check that the specified key (primary or subordinate) made the signature.
Currently, _pgpVerifySignature checks that the certificate's primary key or a subkey made the signature. Only check that the specified key (primary or subordinate) made the signature.