-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512,SHA1 Vienna/Klosterneuburg, March 27th, 2014 Because my old key (1024 bit DSA) was getting really old, and is not to be considered actually /secure/ anymore (in a cryptographic sense, it was *not* compromised) it's time to transition to a new key. This new key is longer (4096 bit), and RSA instead of DSA. The old key will stay valid for some time (I guess a couple months), before I publish a revocation certificate, but I'd prefer to get messages using the new key from now on. This document is signed by both keys to certify the transition. You can get the raw document here: http://www.waldner.priv.at/key-transition-201403.txt and a detached signature here: http://www.waldner.priv.at/key-transition-201403.txt.sig (Note: with detached signatures and GnuPG 1.4.16 it seems you can only check the first signature. Better to use the clearsigned version, see below.) Or the clearsigned document here: http://www.waldner.priv.at/key-transition-201403-signed.txt Verify that it's signed with both keys like: wget -q -O- http://www.waldner.priv.at/key-transition-201403-signed.txt | gpg --verify Old key: pub 1024D/9AF9DE82 2001-02-07 Key fingerprint = 406F 241A 9E21 CF92 1DED A0A8 1343 7348 9AF9 DE82 uid Robert Waldner uid Robert Waldner uid Robert Waldner sub 1024g/E32E55C4 2001-02-07 New key: pub 4096R/1D49875178CD7CA7 2014-03-27 Key fingerprint = 93EE 0FE5 9E95 9F4E 7090 CFC7 1D49 8751 78CD 7CA7 uid Robert Waldner uid Robert Waldner uid Robert Waldner (VIBE!AT) sub 4096R/945FE30BC5A32CF3 2014-03-27 To fetch the full key, you can get it with: wget -q -O- http://www.waldner.priv.at/1D49875178CD7CA7.asc | gpg --import - It might also be available on a keyserver near you. If you already know my old key, you can now verify that the new key is signed by the old one: gpg --check-sigs 1D49875178CD7CA7 If you don't already know my old key, or you just want to be double extra paranoid, you can check the fingerprint against the one above: gpg --fingerprint 1D49875178CD7CA7 If you are satisfied that you've got the right key, and the UIDs match what you expect, I'd appreciate it if you would sign my key: gpg --sign-key 1D49875178CD7CA7 Of course you can also contact me to check fingerprints (and ID if we can meet in person) by whatever means convenient before signing. In fact, I'd appreciate it if you do! Last (though not least) I'd be grateful if you could send me the signed key: gpg --export -a 1D49875178CD7CA7 | mail -s "Signed PGP key" waldner@waldner.priv.at A note on public keyservers - --------------------------- I can't keep you from uploading my key+signatures to keyservers - feel free to do so! - though I'd prefer receiving signed keys by email, not by stumbling upon them by accident on some keyserver or other ;) Kind regards, Robert Waldner -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIVAwUBUzXlUx1Jh1F4zXynAQoBxQ/8Cpcu3WszM6QYIjUKZMxgdxSivrPyn+e9 tJbAOc8cBxI8AjxtYedgssrPiwVBDXBfECrl4Eo9chpk8eWRDV2QoXIRpWqIMLWt Ky0wfoIyIMlPgF0waKqZQVkSIH1dhtyv9tWydgjlQ24RJm9HWQD0H4K7FyoWhi2K elJb3QU0/IwKAjQXYch1VMw3onHpNfD/p/6CQIhJGTEajgJLqjfijaEianjq9hSu jDMK7DLYskf5LmpfbfsaKtKjLvPSPYFM/uLHGOK9vX/p6FVQkfMii7GvvjfAzFHV ypO3upmMrNiw5kasBkfff5WP132/Ig0Nankpz/whrtlE9xgDgLuM0QkVKiBX87Bs IxSZNHmok3nHdW+RyjdBLPuobIZ1Nw0mNCWuAkZKH7fwcLRDxqKoe4P0lzcC1ESW lXLoPLPcdOymU9LUK3QNxIN3AuMKFD99gxZNl6bzGrPjWk4lc1cQOIooNYAiWY2Z cEgQyI+S5DN2uZaJrWyWfAKs2noEQLL3rvnBAQb/w/TQxIeh6oW/TM5Z8bXeJEgW yM7nwaHUlCyDXg5xYRtAFLmN6PUfpCyN0Upif2rcvy4sfR4PFPlQSRc39481FFdQ 4MXEv92AXK0f4ufTHChNg0hDxXKVgkdmBtEMCceD9UkMVvwNdaA46Epg7FzLj7lS MGIMUdOXMpSIPwMFAVM15VMTQ3NImvneghEC4isAn3vZaepATl3IGIA1LBt/Tfrn 8h8EAJ94YWSsKWENyCuP+WAv+p8PaQQpZw== =SpFj -----END PGP SIGNATURE-----