Where can I find the public key that this parser update was signed with ?
gpg --verify ArcSight-188.8.131.5223.0-ConnectorParsers.aup.sig
gpg: assuming signed data in 'ArcSight-184.108.40.20623.0-ConnectorParsers.aup'
gpg: Signature made Wed 14 Nov 2018 08:12:42 PM CET
gpg: using RSA key 72682D5929249957
gpg: Can't check signature: No public key
The only Micro Focus keys I'm aware of are https://downloads.hpe.com/pub/keys/HPE-GPG-Public-Keys.tar.gz, and they don't include this public key.
What's also surprising, is that I can't find any MF documentation related to verifying these signature files anymore.
The last framework update signature: ArcSight-220.127.116.1114.0-Connector-Linux64.bin.sig, was created with public key C5CB8D128CAB0488, which is "Micro Focus Group Limited RSA-2048-17.public" from the link just mentioned.