when I today refreshed the repos via zypper, this file's signature was invalid:
That is, the signature in the provided .asc file was not a valid signature of this file. The .key file contains the very same key this repo was signed with before.
I thought I should let someone know, so here you go. Also, it would be nice if you could confirm or falsify.
Here are the sha256sums of the failed files:
Here is the repomd.xml:
and here its failed signature: