~ajhalili2006's personal website, built with Zensical (successor of Material for Mkdocs) [old repo name got bugged while attempting to do manual knot migration via repo deletion]
andreijiroh.dev
andreijiroh.dev
zensical
mkdocs-material
website
1---
2title: Cryptographic keys
3---
4This page contains all the cryptographic public keys I use for different purposes, ranging from
5encryption and decryption to signing Git commits and even identity verification without requiring
6an government-issued ID.
7
8## Keysigning ceremories
9
10_This is moved to [Encrypted communications](../user-manual/encrypted-communications.md#key-signing-ceremories)._
11
12## GPG Keys
13
14You can get all the GPG keys I use publicly, including the 2021 key (as shown on Keybase) and
15ProtonMail-specific encryption key in one file [here](./pgp.asc). Make sure to check the fingerpints
16and/or key IDs against [this list](#keys-i-use) to ensure its the right key.
17
18```bash
19# one-liner import from my website (or via ajhalili2006.vern.cc and ctrl-c.club/~ajhalili2006)
20# For my eu.org domain, use either the regular suffix or uk.eu.org one.
21gpg --fetch-keys "https://andreijiroh.eu.org/keys/pgp.asc"
22# sourcehut/gitlab, but it is advised to import latest keys and signatures from keyservers, listed below
23gpg --fetch-keys "https://meta.sr.ht/~ajhalili2006.pgp"
24gpg --fetch-keys "https://mau.dev/ajhalili2006.gpg"
25```
26
27If you prefer to load it from a keyserver (let say you're an Ubuntu/Debian developer snooping around my
28[Launchpad.net profile](https://launchpad.net/~ajhalili2006)), you can do so with these command below:
29
30```bash
31# Other keyservers: pgp.mit.edu, keys.openpgp.org, keys.mailvelope.com
32gpg --keyserver hkps://keyserver.ubuntu.com --recv-keys \
33 4D5E631758CB9CC45941B1CE67BFC91B3DA12BE8 \
34 0527234A430387EA5695D824A30EBE40AD856D88 \
35 EA957E7086E934F8DB9CAD21940047813E9D641C \
36 5D69E717C5BC95731C2AD8BD120C218ED2291996
37```
38
39### Keys I use
40
41* `4D5E631758CB9CC45941B1CE67BFC91B3DA12BE8` - the December 2022 PGP key used for commits and encryption
42(primary email: `ajhalili2006@gmail.com`)
43* `0527234A430387EA5695D824A30EBE40AD856D88` - the Feburary 2021 PGP key, as shown on my Keybase profile
44(primary email: `andreijiroheugeniohalili24680@gmail.com`)
45* `A715100E58CF60500EE159652F384539C700B263` - Recap Time Squad specific key
46* `EA957E7086E934F8DB9CAD21940047813E9D641C` - spare signing key for software release, especially on my own
47Debian package repos/Launchpad PPAs.
48* `5D69E717C5BC95731C2AD8BD120C218ED2291996` - ProtonMail specific encryption key (`ajhalili2006@proton.me`)
49
50## SSH Keys
51
52You can also get all the keys in one file (and its signers file) at the following URLs:
53
54* Website as its deployed via CI: <https://andreijiroh.eu.org/keys/ssh-trustfile.txt>
55* As pushed via Git: <https://mau.dev/ajhalili2006/tildeverse-web/-/blob/main/markdown/keys/ssh-trustfile.txt>
56
57These SSH keys are used for signing Git commits and tags occassionally, as well for signing checksums file and identity verification on
58account recovery for sr.ht and Miraheze.