GPG Key Rotation (en-US)

Due to my poor key management, I lost the passphrase to master key backup that I can’t update the expiration of sub key. So I have to generate a new key. The old key will be deprecated at 2021-02-21T08:00:00.000Z(ISO Time). If you saw a signature signed after this date(which probably won’t happen), please contact me.

What happened to the old key

Since I store all my keys except the master key on my yubikey. I can’t sign a revocation or update the expiration date with my yubikey. I need to access the master key from my backups. But I forgot the passphrase to the backup. So I have to generate a new key. (The revocation signed previously has also lost.)

  • The key IS NOT COMPROMISED
  • I lost both my master key and revocation
  • I can’t fully prove that I have full control of this key since I lost both the master key and the revocation
  • The only thing I can do is sign this message with one of the sub key
  • The backup has been DESTROYED since I was unable to decrypt

Fingerprint of the old key

1
2
3
4
5
6
pub   rsa4096/DB1A155D0B6231D8 2019-07-19 [C]
D622E356B1F3750396123BC3DB1A155D0B6231D8
uid [ultimate] Sparta_EN <[email protected]>
sub rsa4096/800A2F583DF77EE6 2019-07-19 [S] [expires: 2021-07-18]
sub rsa4096/6ECF0CC8E81C70CF 2019-07-19 [E] [expires: 2021-07-18]
sub rsa4096/AFD8703F4B7F6176 2019-07-19 [A] [expires: 2024-07-17]

Fingerprint of the new key

1
2
3
4
5
6
pub   rsa4096/7CC10FCF48597178 2021-02-21 [C]
98B5D55D9DD12F2E9DACB6027CC10FCF48597178
uid [ultimate] Sparta_EN <[email protected]>
sub rsa4096/BCB5F483AF4BD60F 2021-02-21 [S] [expires: 2026-02-20]
sub rsa4096/E20AA8145E0B3FB1 2021-02-21 [E] [expires: 2026-02-20]
sub rsa4096/74B35AF2B39BCC88 2021-02-21 [A] [expires: 2026-02-20]

Message I signed with sub key 800A2F583DF77EE6

Message: msg_en-US.txt

Signature: msg_en-US.txt.sig

Old Key(signature validation): D622E356B1F3750396123BC3DB1A155D0B6231D8.asc

New Key: 98B5D55D9DD12F2E9DACB6027CC10FCF48597178.asc