On Thu, Jul 02, 2026 at 03:17:18PM +0300, Otto Kekäläinen wrote:
> Hi,
> 
> 
> On Thu, 2 Jul 2026 at 13:41, Otto Kekäläinen <[email protected]> wrote:
> >
> > Hi,
> >
> > On Thu, 2 Jul 2026 at 13:19, Adrian Bunk <[email protected]> wrote:
> > >
> > > On Thu, Jul 02, 2026 at 12:54:24PM +0300, Otto Kekäläinen wrote:
> > > > I have uploaded this twice already but I am not getting any
> > > > confirmation email from the FTP-Master server.
> > >
> > > Expired key:
> > >
> > > pub   rsa4096/BED8449FCEE8DA88 2002-02-20 [SC] [expired: 2026-06-26]
> > >       Key fingerprint = 99B4 52B1 1F3C 74C3 B453  E46F BED8 449F CEE8 DA88
> > > uid                 [ expired] Otto Kekäläinen <[email protected]>
> >
> > I updated and uploaded my key on the same say June 17th when I got the
> > notification email 'Your Debian key is expiring'. Why isn't two weeks
> > enough to get the new key updated?
> >
> > Or is `gpg --keyserver hkps://keyring.debian.org:443 --send-keys
> > BED8449FCEE8DA88` the wrong way to upload the key?
> >
> > The site https://keyring.debian.org/ does not expose any lookup
> > functionality to keyring.debian.org, so one can't check if the upload
> > worked.
> 
> While I cannot look at the "queue" of pending new keys for next
> update, I can look at the latest keyring updated on June 27th:
> 
> $ rsync -az --progress keyring.debian.org::keyrings/keyrings/ .
> 
> $ ll debian-keyring.gpg
> Permissions Size User Date Modified Name
> .rw-rw-r--   32M otto 27 Jun 12:57  debian-keyring.gpg
> 
> $ gpg --no-default-keyring --keyring ./debian-keyring.gpg --list-keys
> [email protected]
> gpg: please do a --check-trustdb
> pub   rsa4096 2002-02-20 [SC] [expired: 2026-06-26]
>       99B452B11F3C74C3B453E46FBED8449FCEE8DA88
> uid           [ expired] Otto Kekäläinen <[email protected]>
> ...
> 
> So clearly `gpg --keyserver hkps://keyring.debian.org:443 --send-keys
> BED8449FCEE8DA88` is not the correct way to upload a key. The command
> does not yield any errors at least:
> 
> $ gpg --verbose --keyserver hkps://keyring.debian.org:443 --send-keys
> BED8449FCEE8DA88
> gpg: enabled compatibility flags:
> gpg: sending key BED8449FCEE8DA88 to hkps://keyring.debian.org:443
> 
> $ gpg --list-keys BED8449FCEE8DA88
> pub   rsa4096 2002-02-20 [SC] [expires: 2028-02-28]
>       99B452B11F3C74C3B453E46FBED8449FCEE8DA88
> uid           [ultimate] Otto Kekäläinen <[email protected]>
> ...
> 

The release team has no influence over the keyring, please be mindful of
the volume of our list traffic and drop this bug from your discussion about
keys.

Thanks

-- 
Jonathan Wiltshire                                      [email protected]
Debian Developer                         http://people.debian.org/~jmw

4096R: 0xD3524C51 / 0A55 B7C5 1223 3942 86EC  74C3 5394 479D D352 4C51
ed25519/0x196418AAEB74C8A1: CA619D65A72A7BADFC96D280196418AAEB74C8A1

Reply via email to