forgot I signed the git-annex key

2014-08-13 11:06:34 -04:00 · 2014-08-13 11:06:34 -04:00 · 2868ea352a
commit 2868ea352a
parent 7c7e5ccdd8
1 changed files with 1 additions and 29 deletions
--- a/doc/install/verifying_downloads.mdwn
+++ b/doc/install/verifying_downloads.mdwn
@ -28,32 +28,4 @@ is the right key? The answer is the GPG web of trust.
 * Joey Hess generates these git-annex packages,
  and has a GPG key, [C910D9222512E3C Joey Hess <id@joeyh.name>](http://pgp.cs.uu.nl/stats/2512E3C7.html), which has
  been verified and signed by many people.
-* For policy reasons, Joey does not sign the git-annex distribution signing
-  key with his GPG key. However, he has generated a signed statement,
-  below, attesting to its valididy. You can import Joey's key into gpg,
-  and then run gpg copy and paste the message below into `gpg --verify`
-
-<pre>
-----BEGIN PGP SIGNED MESSAGE-----
-Hash: SHA1
-
-As of 12 August 2014, the GPG key used to sign the git-annex builds
-that are distributed on downloads.kitenet.net is: 5EE1DBA789C809CB
-----BEGIN PGP SIGNATURE-----
-Version: GnuPG v1
-
-iQIVAwUBU+p1dMkQ2SIlEuPHAQL0Sg//Uy/WY6tHZnI1nf5U5SrFOlOG21y4f8k1
-72ZiIfJVMUgckeyVBcC2DW56nNuqiZzCR1OmZcrrFeEQgcinFdlPrfRfAJnlYH5/
-PD4UlyoYpZa9uCvVLOI5oDKVJ1hm9zDtU7C7q3EqmTj7j+vg4k5xlLRwNr3FlXkJ
-F3SGyYryCOXfhKgSexFMI91CCV0+mDvt5SR1LWBFVXgSre3oBpcb3cPO1CsAzijQ
-FVdIAbuZC8NYK0+i8McaE8C7QUfJHbo9ibrE7VV90lFNoQb7YiBu2Yuq6+HdysAb
-c0M070LMOsNPJRkZpOu2yxX4nCFVLZhuWg+6kADqp8gYu33629+A0nYLcMzGXiYP
-RS8W4UbcqmvEbvvLYuMFF4UwcHMlMO/pGu14ITNMP6/Xd+rbiGs51rRLwDwCBq+7
-1pebaFpjGwunWzOW2MjummHtGQgNEAwXdob1b8EqxREhrULo1Kmr5uECebPL3iFi
-4W+A7yjs8Dci0dGI85pgIMgyqX2XSGy40VO+naDkAc4wPuy7NGcTTXJUTIfVTPsD
-gKrXx/GTxVQdIj9XrLbp8assE/HyM8H3H4KIMuCV8lBVxb5szWRkteU+d6CeLyYl
-FNc1OHnPRfhcwGbFr0fHQVMvgKMYDU2JxKBaIvZpsMHibftYhVyIX6uG98IXJ32w
-12l8WDf7RTU=
-=gqFI
-----END PGP SIGNATURE-----
-</pre>
+* Joey's GPG key has signed the git-annex distribution signing key.