PGP Transition Statement
—–BEGIN PGP SIGNED MESSAGE—–
OpenPGP Key Transition Statement for James Hemmings / firstname.lastname@example.org
I have created a new OpenPGP key and will be transitioning away from
my old key. The old key has not been compromised and will continue to
be valid for a short period of time, but I prefer all future correspondence to be
encrypted to the new key, and will be making signatures with the new
key going forward.
The reason for the new key transition is to increase encryption from 2048 RSA to 4096 RSA.
I would like this new key to be re-integrated into the web of trust.
This message is signed by both keys to certify the transition. My new
and old keys are signed by each other. If you have signed my old key,
I would appreciate signatures on my new key as well, provided that
your signing policy permits that without re-authenticating me.
The old keys, which I am transitioning away from, is:
pub 2048R/8F8C3666 2014-08-03
Key Fingerprint = 3BED844069C9A894F91D88F792992F4A8F8C3666
The new keys, to which I am transitioning, is:
pub 4096R/AEDC917C 2016-09-15
Key Fingerprint = CF06336569FB80B16F5B7BAECCF606D6AEDC917C
The entire key may be downloaded from: https://jameshemmings.co.uk/docs/AEDC917C.txt
To fetch the full new key from a public key server using GnuPG, run:
gpg –keyserver keys.gnupg.net –recv-key AEDC917C
If you already know my old key, you can now verify that the new key is
signed by the old one:
gpg –check-sigs AEDC917C
If you are satisfied that you’ve got the right key, and the User IDs
match what you expect, I would appreciate it if you would sign my key:
gpg –sign-key AEDC917C
You can upload your signatures to a public keyserver directly:
gpg –keyserver keys.gnupg.net –send-key
Or email email@example.com(possibly encrypted) the output from:
gpg –armor –export
If you’d like any further verification or have any questions about the
transition please contact me directly.
To verify the integrity of this statement:
wget -q -O- https://jameshemmings.co.uk/docs/key_transition-2016-09-15.txt|gpg –verify
—–BEGIN PGP SIGNATURE—–
Version: GnuPG v2
—–END PGP SIGNATURE—–
PGP Statement for Verification: https://www.jameshemmings.co.uk/docs/key_transition-2016-09-15.txt