projects / ~bandali / bndl.org / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
add /gpg and update /contact
[~bandali/bndl.org] / static / key-transition-2018-08-17.txt
diff --git a/static/key-transition-2018-08-17.txt b/static/key-transition-2018-08-17.txt
new file mode 100644 (file)
index 0000000..fb93a7f
--- /dev/null
+++ b/static/key-transition-2018-08-17.txt
@@ -0,0 +1,131 @@
+-----BEGIN PGP SIGNED MESSAGE-----
+Hash: SHA256
+
+            _______________________________________________
+
+             GPG KEY TRANSITION STATEMENT FOR AMIN BANDALI
+            _______________________________________________
+
+
+I have created a new GPG key and will be transitioning away from my old
+key.  The old key has not been compromised and will continue to be valid
+for some time, but I prefer all future correspondence to be encrypted to
+the new key, and will be making signatures with the new key going
+forward.
+
+This message is signed by both keys to certify the transition.  My new
+key is signed by the old one.  If you have signed my old key, I would
+appreciate signatures on my new key as well, provided that your signing
+policy permits that without re-authenticating me.
+
+The old key, which I am transitioning away from, is:
+
+,----
+| pub   rsa4096 2016-01-31 [SC] [expires: 2019-02-13]
+|       500C 1D55 D1EC 1FED E8C0  C8DE 4E05 246A B0BF 7FFB
+| uid           [ultimate] Amin Bandali <amin@aminb.org>
+| uid           [ultimate] Amin Bandali <aminb@gnu.org>
+| uid           [ultimate] Amin Bandali <b@nda.li>
+| uid           [ultimate] Amin Bandali <me@aminb.org>
+| sub   rsa4096 2016-01-31 [S] [expires: 2019-02-13]
+|       5AC5 0B1B D540 A902 D4B6  2B5C DAE5 4A52 337F 0283
+| sub   rsa4096 2016-01-31 [E] [expires: 2019-02-13]
+|       F05B FB25 77C7 5AF6 7783  A66F 3351 056A ACD6 6B1F
+| sub   rsa4096 2016-01-31 [A] [expires: 2019-02-13]
+|       C165 6BE2 FDCA D028 0D5A  4314 3A4A C417 58E9 C177
+`----
+
+The new key, to which I am transitioning, is:
+
+,----
+| pub   rsa4096 2018-08-05 [C] [expires: 2020-08-04]
+|       CDDE 75F9 0353 8E71 813C  DA27 D1FB A366 27D6 5876
+| uid           [ultimate] Amin Bandali <amin@gnu.org>
+| uid           [ultimate] Amin Bandali <amin@aminb.org>
+| uid           [ultimate] Amin Bandali <mab@gnu.org>
+| uid           [ultimate] Amin Bandali <aminb@gnu.org>
+| sub   rsa4096 2018-08-05 [S] [expires: 2020-08-04]
+|       E14F 56EE 1338 901E A8A8  D2DD 91A9 6FF7 FEF6 BEB4
+| sub   rsa4096 2018-08-05 [E] [expires: 2020-08-04]
+|       F9B3 BA24 31A0 9B38 31A3  42EF 1F29 83A9 9A69 D453
+| sub   rsa4096 2018-08-05 [A] [expires: 2020-08-04]
+|       4FB5 D03D A65E 8DA3 39BE  5EDD 6DC3 8F21 4E4B AAA0
+`----
+
+You can get more information about the key from <https://aminb.org/gpg>,
+and directly download it from <https://aminb.org/0xD1FBA36627D65876.txt>
+or from any public key server using GnuPG:
+
+,----
+| gpg --keyserver keys.gnupg.net --recv-key 0xD1FBA36627D65876
+`----
+
+If you already know my old key, you can now verify that the new key is
+signed by the old one:
+
+,----
+| gpg --check-sigs 0xD1FBA36627D65876
+`----
+
+If you are satisfied that you've got the right key, I would appreciate
+it if you would sign my key:
+
+,----
+| gpg --sign-key 0xD1FBA36627D65876
+`----
+
+You can either upload your signatures to a public keyserver directly:
+
+,----
+| gpg --keyserver keys.gnupg.net --send-key 0xD1FBA36627D65876
+`----
+
+Or, preferably, write to me at <amin@gnu.org> (possibly encrypted) the
+output from:
+
+,----
+| gpg --armor --export 0xD1FBA36627D65876
+`----
+
+If you'd like any further verification or have any questions about the
+transition please contact me directly.
+
+To verify the integrity of this statement:
+
+,----
+| wget -qO - https://aminb.org/key-transition-2018-08-17.txt | gpg --verify
+`----
+
+One last note: though the new key is currently set to expire on
+2020-08-04, I expect to periodically extend it further into the future
+so long as I'm using it or so long as I haven't revoked it.
+
+  -amin
+-----BEGIN PGP SIGNATURE-----
+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+=O0kc
+-----END PGP SIGNATURE-----
Sources for my personal site