$ gpg 2>/dev/null --trust-model=direct --list-sigs schokokeks|egrep '(uid|sig *L)' uid [ unknown] schokokeks.org GbR <root@schokokeks.org> sig L 8BB805C8DC0C3C84 2017-07-05 susie@example.org $ gpg 2>/dev/null --trust-model=pgp --list-sigs schokokeks|egrep '(uid|sig *L)' uid [ full ] schokokeks.org GbR <root@schokokeks.org> sig L 8BB805C8DC0C3C84 2017-07-05 susie@example.org
This affects the VS-NfD project which is expected to use the direct trust model. The spec says that Kleopatra should highlight keys which are not fully trusted, and suggest that the user should verify those keys. If the user does that by means of a local signature (the default in Kleopatra), it does not have the desired effect because GnuPG still says 'unknown'.