On 20/01/2019 17:07, Peter Lebbing wrote: > I had a quick scan through the source code, but couldn't find it.
Oops! I was looking at ancient code instead of the current code. That's why I didn't find it. It's a RIPEMD-160 hash of the attribute that contains the JPEG image, but I'm not 100% clear on the exact byte sequence. But it just hashes a representation of the image. You can see the hash in it's hexadecimal form in: --8<---------------cut here---------------start------------->8--- $ gpg --with-colons -k KEYID [...] uat:n::::1497792746::91EC5F9C95BBB125AC85F65C06EF025712FCD036::1 2111: [...] --8<---------------cut here---------------end--------------->8--- The 8th field (91EC...) is the UID hash, and is equal to the base32 encoded string in the %U escape. Or as DETAILS.gz puts it: | *** Field 8 - Certificate S/N, UID hash, trust signature info | | Used for serial number in crt records. For UID and UAT records, | this is a hash of the user ID contents used to represent that | exact user ID. For trust signatures, this is the trust depth | separated by the trust value by a space. Furthermore, 'n' = validity, '1497792746' is creation time, '1 2111' is the number of attribute subpackets followed by the total attribute subpacket size. For more DETAILS, well, see DETAILS.gz. HTH, Peter. -- I use the GNU Privacy Guard (GnuPG) in combination with Enigmail. You can send me encrypted mail if you want some privacy. My key is available at <http://digitalbrains.com/2012/openpgp-key-peter>
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
