Fingerprint of the subkey just created?

Peter Pentchev roam at
Fri Apr 5 10:50:46 CEST 2013

On Thu, Apr 04, 2013 at 05:36:46PM -0400, vedaal at wrote:
> Daniel Kahn Gillmor dkg at
> wrote on Thu Apr 4 22:56:50 CEST 2013 :
> >gpg will emit the fingerprints for the subkeys if you supply the
> --fingerprint argument twice.  So you might try parsing the output of:
>  gpg --list-keys --with-colons --fingerprint --fingerprint
> --fixed-list-mode $PGPID
> -----
> It's even enough to just do:
> gpg --fingerprint --fingerprint
> and gnupg will list the keys and subkeys each with their short id followed by a line
> Key fingerprint  with the fingerprint

If *you* want to see the fingerprint, that's fine.  If you want to
write a *program* that needs the fingerprint, then --with-colons is
pretty much mandatory, since it avoids all the issues of changing
messages, localized messages, weird characters that might be mistaken
for parts of messages, etc.

Of course, for writing programs that interface with GnuPG, it's best
to go all the way and use GPGME, but for some simple tasks the output
of --with-colons is exactly right.

I didn't know about --fixed-list-mode; thanks!


Peter Pentchev	roam at roam at p.penchev at
PGP key:
Key fingerprint 2EE7 A7A5 17FC 124C F115  C354 651E EFB0 2527 DF13
If wishes were fishes, the antecedent of this conditional would be true.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: </pipermail/attachments/20130405/b2b9e9f9/attachment.sig>

More information about the Gnupg-users mailing list