Hi,
Today we enabled gpg package signing. Currently it signs only new builds. .repo files will be changed soon to provide pubkey URL, gpgcheck on other hand will remain disabled for a few months.
If you want to check gpg signature right now, you could find public key at `https://copr-be.cloud.fedoraproject.org/results/$USERNAME/$COPRNAME/$CHROOT/....
copr-devel@lists.fedorahosted.org