I'm transitioning GPG keys from an old 2048-bit RSA key without an expiration date to a new 4096-bit RSA key with an expiration date set:
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 I am transitioning GPG keys from an old 2048-bit RSA key to a new 4096-bit RSA key. The old key will continue to be valid for some time, but I prefer all new correspondance to be encrypted in the new key, and will be making all signatures going forward with the new key. This transition document is signed with both keys to validate the transition. If you have signed my old key, I would appreciate signatures on my new key as well, provided that your signing policy permits that without reauthenticating me. The old key, which I am transitional away from, is: pub 2048R/8F57FEE9 2010-08-16 Key fingerprint = EF50 8AD3 976F 46A5 2FC5 4747 0711 7BEE 8F57 FEE9 The new key, to which I am transitioning, is: pub 4096R/FEF334A4 2014-05-10 [expires: 2019-05-09] Key fingerprint = 7C18 49F6 9B39 C747 D0CC 9C0D 9761 674D FEF3 34A4 To fetch the full new key from a public key server using GnuPG, run: $ gpg --recv-key 9761674dfef334a4 If you have already validated my old key, you can then validate that the new key is signed by my old key: $ gpg --check-sigs 9761674dfef334a4 If you then want to sign my new key, a simple and safe way to do that is by using caff (shipped in Debian as part of the "signing-party" package) as follows: $ caff 9761674dfef334a4 Find contact details at https://www.lukasanzinger.at if you have any questions about this document or this transition. -- Lukas Anzinger, 11-05-2014 -----BEGIN PGP SIGNATURE----- iQIcBAEBCAAGBQJTb8CxAAoJEJdhZ03+8zSkbR0P/1NzZAiMrG1ZpRnq3VN7nLfk 9GjohastFrwg/CXGvTK9ExJfsOqTVL6dNAWvgbGcv6QuaLohP1LhuAwLHyPs88M3 fsCEs0L/I2Og8TmTrdWUwf4UNns7PmS1pbSGrvfgGre5IU5MryU4p0+dTFECSLpi MNCd5Z4aPSb5DS+ApMUtgJSGScnPtAX6tGH93hDaZ3vI2nXGqaD+OTAtTXK5T9MU 2vKNN1EskoENw4LjxjpItTLWP6Ahmwi7+Wp9rIqjn/WnvAn+xzLToa6Wm5Rdheiq 6kq05FTf66a3C4sUD3iCGH3/dtHtBEQUU0oLJmwHwot1IODc3LU5JpxzlzG/PZcm 3mMjNf8iefUi4kbpW1UveNAFc5OR6CA3PzQvk37KYnjQpUdH+q1/YquAOfr/waWJ /X8EXXoWPxZ48vEVN1W9J12wxA1qNl+24GW3LcB5Z09348J4TpVjQW0fsgfsS3LZ 4RHWuEr97mftJBy5HQcIIsgWOgrrTp30Udh4fOWRVwvD3FBZZQU4boV8Z+X6TllW lpMiNL73XpIzrg9sLvEXLi2IRwbTCgPKrEljzG4hODDRNn/A3ruU/B/nTcujVVyb TepPPQmc1XgGulHBRDMNHn0e+1W+ouBzQlUPgOObVfoHNxrmfH1YnrCgfFpGRJL1 9ew5tBZ+Seoe9bg549OYiQEcBAEBCAAGBQJTb7/TAAoJEAcRe+6PV/7pROQH/jcM ePWTBPd5HXVN7Ki0xHvBFsJaVVK6wD8bzFaVauUFL0IUh4pNq/9E22DICixuIt61 bGc/sHIaCr9fbUJCNalp6prS1ESZLu0crqGTOdLKTiV2MSfqCskv3KrH5AP0H6eG N/u0Q2R349Y3CqtFfXb2wOQSMTRyYlxtaLZpdNwQq/teKJI7RfOW3SnEvenCWVRd JT7MVUMAsOLoOFeoA3EHbf1epHY39LWuU+F0UyIN1HkBYX3t6oIE3LO5jJtvFg1p IFo2iZTCv/QqsdT3Fj450FqfHditNAXCmKr68UeLg9TwrFgAyx0fJ+EU7ieKIpuN /sEf6doT25L0JLI8F3k= =sPTP -----END PGP SIGNATURE-----