After 5 years i thought it would be time for a new OpenPGP key. Also i wanted to migrate to an offline master key and subkeys that are stored on an OpenPGP smartcard.
My old key will continue to be valid for some time, but i prefer all future correspondence to come to the new one. I would also like this new key to be integrated into the web of trust. There is also a plaintext version of this message that is signed by both keys to certify the transition.
the old key was:
pub rsa4096 2013-11-20 [SC] [expires: 2018-09-27] CBF53E306528F800E3AA4EAF32C61D34C09C6A34
And the new key is:
pub rsa4096 2018-08-11 [C] [expires: 2020-08-10] C5BC7498F466D885188CB397CB06EA7B78DBE151
To fetch my new key from a public key server, you can simply do:
gpg --recv-key C5BC7498F466D885188CB397CB06EA7B78DBE151
If you already know my old key, you can now verify that the new key is signed by the old one:
gpg --check-sigs C5BC7498F466D885188CB397CB06EA7B78DBE151
If you are satisfied that you’ve got the right key, and the UIDs match what you expect, I’d appreciate it if you would sign my key:
gpg --sign-key C5BC7498F466D885188CB397CB06EA7B78DBE151
Lastly, if you could send me these signatures, i would appreciate it.
Please let me know if there is any trouble, and sorry for the inconvenience.