Add some instructions on verifying PGP signatures. This could really

use a review from some people who understand these issues better than
I do.


git-svn-id: https://svn.apache.org/repos/asf/httpd/httpd/trunk@89394 13f79535-47bb-0310-9956-ffa450edef68