2 minutes
PGP Transition Statement
-—-BEGIN PGP SIGNED MESSAGE—– Hash: SHA256
OpenPGP Key Transition Statement for James Hemmings / james@hemmings.pw
I have created a new OpenPGP key and will be transitioning away from my old key. The old key has not been compromised and will continue to be valid for a short period of time, but I prefer all future correspondence to be encrypted to the new key, and will be making signatures with the new key going forward.
The reason for the new key transition is to increase encryption from 2048 RSA to 4096 RSA.
I would like this new key to be re-integrated into the web of trust. This message is signed by both keys to certify the transition. My new and old keys are signed by each other. If you have signed my old key, I would appreciate signatures on my new key as well, provided that your signing policy permits that without re-authenticating me. The old keys, which I am transitioning away from, is:
pub 2048R/8F8C3666 2014-08-03 Key Fingerprint = 3BED844069C9A894F91D88F792992F4A8F8C3666
The new keys, to which I am transitioning, is:
pub 4096R/AEDC917C 2016-09-15 Key Fingerprint = CF06336569FB80B16F5B7BAECCF606D6AEDC917C
The entire key may be downloaded from: https://jameshemmings.co.uk/docs/AEDC917C.txt
To fetch the full new key from a public key server using GnuPG, run:
gpg –keyserver keys.gnupg.net –recv-key AEDC917C
If you already know my old key, you can now verify that the new key is signed by the old one:
gpg –check-sigs AEDC917C
If you are satisfied that you’ve got the right key, and the User IDs match what you expect, I would appreciate it if you would sign my key:
gpg –sign-key AEDC917C
You can upload your signatures to a public keyserver directly:
gpg –keyserver keys.gnupg.net –send-key
Or email james@hemmings.pw(possibly encrypted) the output from:
gpg –armor –export
If you’d like any further verification or have any questions about the transition please contact me directly.
To verify the integrity of this statement:
wget -q -O- https://jameshemmings.co.uk/docs/key_transition-2016-09-15.txt|gpg –verify
Regards, James Hemmings Twitter: @MrJamesHemmings Email: james@hemmings.pw WWW: jameshemmings.co.uk —–BEGIN PGP SIGNATURE—– Version: GnuPG v2
iQEcBAEBCAAGBQJX2oSgAAoJEJKZL0qPjDZmEG8H/A3zBhChCSCsBtJcxE6N7gqO go+jri7kPxLJFlGKhoesAVqzPikEB9Vnev/tn6iXxSrEzdYYu73tt8Wiasi4l5jW T7NlHRR0oWgIWoU50ynRi7+OSxk3OwaMpo/DYdfl8SAtJ+TGMyOt+udA44lBXUG0 o1jl+IHKVBzJuw6iCHrkEAJYDFXeh4FQHF9yhE+izbXy8xqnXHmUJDUGT6CLbuFg ikHpU+Dz6KcU8NJRngKCTMI9+xlWatxoECE2AreqoHe5zYg9Dc3XsODe1xolQDJg geFa8docHjhttr1JY/OG71IX1omjnE6T2xsZ7w3bCAVUgiDDwJ7UftsX2Ln8DZaJ AhwEAQEIAAYFAlfahKAACgkQ/Mr1JCokEO8QbxAAkAsFAZeiboDIEDe0sdVH1WJK zBjcpy+9KdSmZIR71YP3t/SOJ8PjZCt/Q+pNiyI2fc6i9SvQld3/35MsPf+m2ZyC 78za5rhYcWYFZLF+LOwiecZXNfxLNUzIs6bfhFezXxPHFeGVyZgbhryt+8Hqw+wZ T8b8K24i78KOW1tqMmvEPO3v7HJxoYNURO26tA75EIaGWVOiHBJvIM8MjpwTih/b lZD3vZpAWPNlTvquEFimLQYV8fTZbmZUiHrZaFN8HIBYqhe/XKLK57RiiZ6CqBjr pq/iuzVwctMOqVN3BQth/5tqRxxZ/WIUcJ+1pL6YZ5sbvMZAmX7NqJi6+7hrGvJi L2czJleciX1OkBS/kpeck+nkpgPu+gXKnVClHB6jvnZaNhMy2aSb95/mtuRiwfJW ZNMEHVAAVHPHwro769dB2m5m4bww3dR6syGkj9tOuyZQ7l/7eugEj4bJgp2ga/Jt MRdoavOfpLdpDxbH2+/XTSH/CCiIjGPvYnHuHr8thqLnzvmNi+a1KJ9c70+/awqx IvOOLzQdgY9rm+tNWZebg9SCDUD+N5QZuFtfwjhHo+Kt6+t5BjjYDwFzgyKcPnlk 8CHUuq/UHtoP4kwZiSstM2JLYYazTMkTmAzPamCYGgI7kGJ2amzSnwpDKqU6GfQ8 NpC2RAVNBTHEe8yt+rc= =gAMr —–END PGP SIGNATURE—–
PGP Statement for Verification: https://www.jameshemmings.co.uk/docs/key_transition-2016-09-15.txt
Public Key: https://www.jameshemmings.co.uk/docs/AEDC917C.txt