On Mittwoch, 27. Dezember 2023 13:40:40 CET Felix E. Klee wrote: > Thanks for pointing out that the signature key and the authentication > keys are identical: > > $ gpg --card-status [...] > Authentication key: 7A0F E73D DB74 4F0F 9734 1DA7 1BE3 49D1 1B6E > D589 > created ....: 2023-06-29 03:50:43
-> Apparently created on the same day as the other keys on the card. [...] > ssb# rsa4096/32B106F6877CC64B created: 2023-11-22 expires: never -> Apparently created about 5 months later. Also note that "ssb#" indicates that this is a stub key, i.e. the secret key doesn't exist on disk (or on card). > At the same time, here the key IDs are different: > > $ gpg --list-keys --keyid-format LONG yubi...@f76.eu > pub rsa4096/1BE349D11B6ED589 2023-06-29 [SC] > 7A0FE73DDB744F0F97341DA71BE349D11B6ED589 > uid [ultimate] Felix E. Klee (YubiKey) <yubi...@f76.eu> > sub rsa4096/7CC02D68D2E31736 2023-06-29 [E] > sub rsa4096/32B106F6877CC64B 2023-11-22 [A] > > How does that go together? It doesn't. The authentication key on the card is different from the key on disk (or rather "not on disk" because you lack the secret key of the authentication key registered in your keyring). Regards, Ingo
signature.asc
Description: This is a digitally signed message part.
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org https://lists.gnupg.org/mailman/listinfo/gnupg-users