This is a notice that I have created a new PGP key as of May 19, 2020. The old key was not compromised, but all future PGP usage should rely on the new key as of this date. The new key was created in a secure environment and is trustworthy in all places where the old key was trusted previously.

The new key:

pub   rsa4096/0xC4DC30F85ABC6FA1 2020-05-19 [expires: 2021-06-01]
      Key fingerprint = DFED 4E42 34E7 348C 57D4  6568 C4DC 30F8 5ABC 6FA1

The old key:

pub   rsa4096/0x1C2B41FD1FA0B7E6 2016-01-07
      Key fingerprint = 5648 A161 7A0D 25D0 B713  CFC9 1C2B 41FD 1FA0 B7E6

To fetch the full key from a public key server, you can do:

gpg --keyserver --recv-key 'DFED4E4234E7348C57D46568C4DC30F85ABC6FA1'


gpg --locate-keys

My public key is available from the OpenPGP key server at, the SKS HKP Keyserver Pool at, my profile at, and of course from my website at

This message has been signed by both my new and old keys for verification.