-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512,SHA1 Date: 2014-07-04 Because of weaknesses with my existing OpenPGP key, I have recently generated a new one, and will be transitioning away from the old one. See for more information about those weaknesses (most of this message is adapted from this guide). The old key was: pub 1024D/0x7C140335FD33167A 2007-11-25 Key fingerprint = A6D9 51D1 6CC2 C89F 7131 3F3E 7C14 0335 FD33 167A And the new key is: pub 4096R/0x80D88B22D4330331 2014-07-03 [expires: 2016-07-02] Key fingerprint = 39C8 D6A5 FAE4 8B54 FD18 2631 80D8 8B22 D433 0331 The old key will continue to be valid for some time, but please start using the new key, and re-integrate the new key in the web of trust. This message is signed by both keys to certify the transition. To fetch the full key from a public key server, you can simply do: gpg --keyserver keys.riseup.net --recv-key '39C8 D6A5 FAE4 8B54 FD18 2631 80D8 8B22 D433 0331' If you already know my old key, you can now verify that the new key is signed by the old one: gpg --check-sigs '39C8 D6A5 FAE4 8B54 FD18 2631 80D8 8B22 D433 0331' If you are satisfied that you've got the right key, and the UIDs match what you expect, I'd appreciate it if you would sign the new key. You can do that by issuing the following command: gpg --sign-key '39C8 D6A5 FAE4 8B54 FD18 2631 80D8 8B22 D433 0331' NOTE: if you have previously signed my key but did a local-only signature (lsign), you will not want to issue the above, instead you will want to use the --lsign-key option, and not send the signatures to the keyserver. NOTE: as the UIDs have changed, you are welcome to only sign the primary UID if you have no reason to believe that the others are valid. NOTE: the above commands may not work with some versions of GPG, in which case you should replace the fingerprint by the key ID 0x80D88B22D4330331 and check the fingerprint of the key separately. I'd like to receive your signatures on the new key. You can either send me an e-mail with the signed version of the new key, or send it to keyservers of your choice. Please let me know if you have any questions, or problems, and sorry for the inconvenience. Antoine Amarilli -----BEGIN PGP SIGNATURE----- Version: GnuPG v1 iQIcBAEBCgAGBQJTtnZ7AAoJEIDYiyLUMwMx5D8P/RJqGvLn/JkW/crE04Dm4ahN e0gNJFrl8mkyAWm34yEiUs4HPwbjI0H+vK4wubjH3L47NIm4pTJvdST7HxMlXceC JVbzOTIbWJ5KY/Qdip3TZhfmnXeLqxWXJdqKt3fqlGq+ryi/aJpcI5TSjZEpmvbu 498rr7VqU8okLsu3BOPr0fKvWeM0FmACqm978PdeWyP0QeV6mjJWxstrmdx8hCWn YBVCENbaOCrqLjvngS4kz9O3024yVTKI7/szbm1a65jgaTPjtexnIBdv04r9AnOH GB6jSDHXVvIslM2kQL+yhNVss4O7Pe++QEpczgEav8ZM9R3VQ534fXloMtQyFkRN OXFhwu9wx6gnWrRrfmeItViVpHcaWonlQ37zHB0uAIaeNSGw5a0bBcsQenmY3RTC Pm7HUHg96nlzibZXjluGu4pqrLkkjGz/3GIigBLxUtgmR19eZXcgR5qVOai0O1pk 9+8gnlIQlIj5pTTolxx2qzy/3olf6vXQbOIfsvHRsTJG7p9y29a5hvlh3rvCgCEX kXYFfzH4Y6fc6YwbPLmgmivnJZtXbwRhCyF/cET83DKKx/S+Z5YSXbH2HiQH38fE tigrQOCYMR6gGghJbP1GJhXc5xk64Bakl1Sfjj+PbT9MfHl+zb/cXOm/GKN0yerY rDDLv9bmnjJb2O4SjxHDiEYEARECAAYFAlO2dnsACgkQfBQDNf0zFnrEYgCgrXzR U0s+LP1NpOBsXeV9TepZO/UAoKBNDYFvkZuAeq0n92XPNzYNVTmc =jSzp -----END PGP SIGNATURE-----