On 09/29/2015 09:51 PM, Heiko Folkerts wrote:
AFAIK the exports contain a valid looking key block.
It *looks like* a valid key block, but--if the keytocard operation was indeed successful--it's actually only a "stub" that does not contain any private material.
You can check the actual contents of the exported data with the --list-packets option:
$ gpg --list-packets your_exported_private_keys.gpg
Look for the following lines in the output:
:secret sub key packet:
[...]
gnu-divert-to-card S2K, [...]
serial-number: <your card serial number>
You should see those lines once for each subkey that you moved to the card.
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Gnupg-users mailing list [email protected] http://lists.gnupg.org/mailman/listinfo/gnupg-users
