-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1,SHA512 GPG Transition Statement - Thursday 2015-12-10 I am moving my preferred GPG key from an old 1024-bit DSA key to a new 4096-bit RSA key. The old key will continue to be valid for some time, but I would rather all new secure correspondence to be encrypted with the new key. I will be making all new signatures with the new key from today. See http://www.debian-administration.org/users/dkg/weblog/48 for instructions on how to do the same. This message is signed by both keys to certify the transition. The fingerprints below were obtained via, on my machine: $ gpg --fingerprint | grep -B3 fontani@ The OLD key was: pub 1024D/38AE4D5E 2008-11-02 Key fingerprint = 7D94 1D1C CF93 1598 A567 01B3 D47F C150 38AE 4D5E Tne NEW key is: pub 4096R/3C879073 2015-12-09 Key fingerprint = 809D 2E19 BAAB 34F0 F06B A9FE 0082 DA0D 3C87 9073 I have signed the new key with the old one, and with my current employer's key. You may get a copy of my new key from the public gpg keyserver at pgp.mit.edu: gpg --keyserver pgp.mit.edu --recv-key 3C879073 If you already have my OLD key, you can now verify that the new key is signed by the old one: gpg --check-sigs 3C879073 If you don't already know my old key, or you just want to be double extra paranoid, you can check the fingerprint agains the one above: gpg --fingerprint 3C879073 Please do let me know if you have any trouble with this transition. If you're still using old 1024-bit DSA keys, you also may wish to consider migrating your key to a stronger version. All the best, ta ta for now - -marco- -----BEGIN PGP SIGNATURE----- Comment: GPGTools - http://gpgtools.org iEYEARECAAYFAlZoudcACgkQ1H/BUDiuTV66yQCfR6VWC4LkevQnZ5xgyTJ59t+H 980AoJLpkBhe35jE3ZxQPjIBw/yVhddbiQIcBAEBCgAGBQJWaLnXAAoJEACC2g08 h5BzXO8P/0QGFqyUkF5J9AfVAg9HCQCQbQSnuE44wuKpp9KUUxnIawz6hXkQv1gx iObix7jhcBP5Lg95qZNewXbozPyyQOe46tgYCXkHB9HdXGQg5INPgXWMxgL5BUXE xAaPnk3aZwoxbNw43OL6eMW1CqllSt/cXfY0bbz8JnvVDINC5R2JbnXYcEW8LAmm 2zxM07BTwTSkwJaKQSniRMWOBj+VCQBbJdahd8PsohwFUPF1+0Yklj9bjx/ALXU5 Ola1i9yMjdRcRV3NveNJHRhd0fXfDZizI/jEA/qEds52rOCj3qA3w41f5g7+UQCq HOmxorBx4RTrvIm6W/Eob0mqV/Ig2IRIXMyc//8OYsto0bv2mzBb5vijAzbTVXMV W2tWR6e5Hsr1u7e1kpLmuFdhMBhiJtEP90CbXt+4tajxN8T1T0ZODx7CNwEezGKo hbIa9ejrxVhk3iG46WPorv1mFeLK4ZtgYv8EIIYrDLglOLfT9YHLdkgOU4T23U7R v3jXrlwPt7rNvmUy3C7b1NNWgTmBqvTv3QAn/3uGfJBMesnJrOTOeM2j9wkLc843 sevFqm4fxPuGt7oRL4vDDFs8KLeuwD/hfDRqfBMyTQbKb+OOiqmGDD5pbjyaEnyz YPxd8zCXMLZLCaNY0qpiV5cN9dsfsUyTY+zUd8auYuQwnLkniDxM =LH5u -----END PGP SIGNATURE-----