lainOS/pgp
lainOS/pgp
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
lainOS developer and signing keys. https://lainos.net
2 commits 1 branch 0 tags 33 KiB
Find a file
Exact
amnesia1337 da0702dc81 continued from Codeberg
2026-04-30 12:27:42 -07:00
amnesia-lainos-dev-Fingerprint.txt continued from Codeberg 2026-04-30 12:27:42 -07:00
amnesia-lainos-net-Fingerprint.txt continued from Codeberg 2026-04-30 12:27:42 -07:00
lainos-signing-key.asc continued from Codeberg 2026-04-30 12:27:42 -07:00
README.md continued from Codeberg 2026-04-30 12:27:42 -07:00
REVOKED_2026.03.09_lainos-signing-key.asc continued from Codeberg 2026-04-30 12:27:42 -07:00
signing-key-cross-signatures-2026.03.09.asc continued from Codeberg 2026-04-30 12:27:42 -07:00
signing-key-transition-statement-2026.03.09.txt continued from Codeberg 2026-04-30 12:27:42 -07:00

README.md

PGP Key Rotation 2026.03.09

LainOS has recently switched domains(lainos.dev --> lainos.net) and PGP keys as of 2026.03.09. View the PGP-signed transition statement here: https://codeberg.org/LainOS/pgp/src/branch/main/signing-key-transition-statement-2026.03.09.txt

UPDATE 2026.03.12: OLD SIGNING KEY 0xB2E5012D409A7AFB REVOKED. REASON: KEY SUPERSEDED.

GitLab Key History: https://gitlab.com/lainos/pgp

Verifying Cross-Signatures

The file signing-key-cross-signatures-2026.03.09.asc contains both cross-signatures, (old key certifies new key, new key certifies old key).

To verify locally:

  1. Clone the repo (if needed):
    git clone https://codeberg.org/LainOS/pgp.git
    cd pgp

  2. Import the cross-signed file:
    gpg --import signing-key-cross-signatures-2026.03.09.asc

  3. Check cross-signature on the new identity:
    gpg --check-sigs amnesia@lainos.net

    → Look for: sig! B2E5012D409A7AFB [date] Grayson Giles amnesia@lainos.dev

  4. Check cross-signature on the old identity:
    gpg --check-sigs amnesia@lainos.dev

    → Look for: sig! 03E8F5B63BAC3998 [date] Grayson Giles amnesia@lainos.net