changing key expiration
Bernhard Kuemel
bernhard at bksys.at
Thu Aug 27 19:36:02 CEST 2009
Hi gnupg-users!
I changed my expiration with --edit-key expire from never to 3y and
uploaded the key. Then I changed it to 5y and uploaded the key. Now the
uploaded key has several self signatures and expiration dates on
http://pgp.mit.edu:11371/pks/lookup?op=vindex&search=0xF732FBF3E4219D48
Type bits/keyID cr. time exp time key expir
pub 1024D/E4219D48 2004-12-19
uid Bernhard Kuemel <bernhard at bksys.at>
sig sig3 E4219D48 2004-12-19 __________ __________ [selfsig]
sig sig3 1D503977 2008-08-13 __________ __________ Mathias Ertl
<mati at fsinf.at>
sig sig3 E4219D48 2009-08-27 __________ 2012-08-26 [selfsig]
sig sig3 E4219D48 2009-08-27 __________ 2014-08-26 [selfsig]
uid Bernhard Kümel <bernhard at bksys.at>
sig sig3 E4219D48 2009-08-27 __________ 2012-08-26 [selfsig]
sig sig3 E4219D48 2009-08-27 __________ 2014-08-26 [selfsig]
sub 1024g/0A5FA7F8 2004-12-19
sig sbind E4219D48 2004-12-19 __________ __________ []
It appears the key expiration is part of the signatures. Will the most
recent signature have the effective expiration date?
I downloaded the key so I could revoke the unwanted signatures.
--list-packets hast 'expires 0' in the key packet and expiry dates in
the signature packets:
bernhard at be:~/.gnupg$ gpg --export bernhard at bksys.at|gpg --list-packets
:public key packet:
version 4, algo 17, created 1103422098, expires 0
pkey[0]: [1024 bits]
pkey[1]: [160 bits]
pkey[2]: [1021 bits]
pkey[3]: [1020 bits]
:user ID packet: "Bernhard Kuemel <bernhard at bksys.at>"
:signature packet: algo 17, keyid F732FBF3E4219D48
version 4, created 1251390038, md5len 0, sigclass 0x13
digest algo 2, begin of digest 18 a8
hashed subpkt 27 len 1 (key flags: 03)
hashed subpkt 11 len 5 (pref-sym-algos: 9 8 7 3 2)
hashed subpkt 21 len 2 (pref-hash-algos: 2 3)
hashed subpkt 22 len 2 (pref-zip-algos: 2 1)
hashed subpkt 30 len 1 (features: 01)
hashed subpkt 23 len 1 (key server preferences: 80)
hashed subpkt 2 len 4 (sig created 2009-08-27)
hashed subpkt 9 len 4 (key expires after 9y252d14h12m)
subpkt 16 len 8 (issuer key ID F732FBF3E4219D48)
data: [157 bits]
data: [159 bits]
:signature packet: algo 17, keyid 3BD759FD1D503977
version 4, created 1218642819, md5len 0, sigclass 0x13
digest algo 2, begin of digest 6b 8a
hashed subpkt 2 len 4 (sig created 2008-08-13)
subpkt 16 len 8 (issuer key ID 3BD759FD1D503977)
data: [159 bits]
data: [160 bits]
:signature packet: algo 17, keyid F732FBF3E4219D48
version 4, created 1103422098, md5len 0, sigclass 0x13
digest algo 2, begin of digest cf ec
hashed subpkt 2 len 4 (sig created 2004-12-19)
hashed subpkt 27 len 1 (key flags: 03)
hashed subpkt 11 len 5 (pref-sym-algos: 9 8 7 3 2)
hashed subpkt 21 len 2 (pref-hash-algos: 2 3)
hashed subpkt 22 len 2 (pref-zip-algos: 2 1)
hashed subpkt 30 len 1 (features: 01)
hashed subpkt 23 len 1 (key server preferences: 80)
subpkt 16 len 8 (issuer key ID F732FBF3E4219D48)
data: [159 bits]
data: [158 bits]
:signature packet: algo 17, keyid F732FBF3E4219D48
version 4, created 1251389374, md5len 0, sigclass 0x13
digest algo 2, begin of digest 7d 2b
hashed subpkt 27 len 1 (key flags: 03)
hashed subpkt 11 len 5 (pref-sym-algos: 9 8 7 3 2)
hashed subpkt 21 len 2 (pref-hash-algos: 2 3)
hashed subpkt 22 len 2 (pref-zip-algos: 2 1)
hashed subpkt 30 len 1 (features: 01)
hashed subpkt 23 len 1 (key server preferences: 80)
hashed subpkt 2 len 4 (sig created 2009-08-27)
hashed subpkt 9 len 4 (key expires after 7y252d14h1m)
subpkt 16 len 8 (issuer key ID F732FBF3E4219D48)
data: [160 bits]
data: [159 bits]
:user ID packet: "Bernhard K\xc3\xbcmel <bernhard at bksys.at>"
:signature packet: algo 17, keyid F732FBF3E4219D48
version 4, created 1251390042, md5len 0, sigclass 0x13
digest algo 2, begin of digest aa b4
hashed subpkt 27 len 1 (key flags: 03)
hashed subpkt 11 len 5 (pref-sym-algos: 9 8 7 3 2)
hashed subpkt 21 len 3 (pref-hash-algos: 2 8 3)
hashed subpkt 22 len 3 (pref-zip-algos: 2 3 1)
hashed subpkt 30 len 1 (features: 01)
hashed subpkt 23 len 1 (key server preferences: 80)
hashed subpkt 2 len 4 (sig created 2009-08-27)
hashed subpkt 9 len 4 (key expires after 9y252d14h12m)
subpkt 16 len 8 (issuer key ID F732FBF3E4219D48)
data: [160 bits]
data: [159 bits]
:signature packet: algo 17, keyid F732FBF3E4219D48
version 4, created 1251389370, md5len 0, sigclass 0x13
digest algo 2, begin of digest 44 14
hashed subpkt 27 len 1 (key flags: 03)
hashed subpkt 11 len 5 (pref-sym-algos: 9 8 7 3 2)
hashed subpkt 21 len 3 (pref-hash-algos: 2 8 3)
hashed subpkt 22 len 3 (pref-zip-algos: 2 3 1)
hashed subpkt 30 len 1 (features: 01)
hashed subpkt 23 len 1 (key server preferences: 80)
hashed subpkt 2 len 4 (sig created 2009-08-27)
hashed subpkt 9 len 4 (key expires after 7y252d14h1m)
subpkt 16 len 8 (issuer key ID F732FBF3E4219D48)
data: [160 bits]
data: [158 bits]
:public sub key packet:
version 4, algo 16, created 1103422101, expires 0
pkey[0]: [1024 bits]
pkey[1]: [3 bits]
pkey[2]: [1024 bits]
:signature packet: algo 17, keyid F732FBF3E4219D48
version 4, created 1103422101, md5len 0, sigclass 0x18
digest algo 2, begin of digest 19 66
hashed subpkt 2 len 4 (sig created 2004-12-19)
hashed subpkt 27 len 1 (key flags: 0C)
subpkt 16 len 8 (issuer key ID F732FBF3E4219D48)
data: [159 bits]
data: [159 bits]
--edit-key revsig only shows me the date when the signatures were made,
but it is the same for the last 2 recently made signatures. How can I
tell them apart?
Thanks, Bernhard
More information about the Gnupg-users
mailing list