I could not find the fingerprint for the LEDE Release Builder signing key listed anywhere. I expected to find it at LEDE Public Keys. But (unless I'm totally missing the obvious), it appears to be absent. Is it listed somewhere else?
I know it's not a foolproof way to verify a fingerprint, but at least users can reference the TLS encrypted LEDE website to confirm the fingerprint listed there matches the one that the sha256sums.gpg file reports. It's better than no verification at all for those users who don't have sigs of VIP people.