self signing the pub key

Ingo Klöcker kloecker at
Fri Dec 25 18:54:38 CET 2015

On Friday 25 December 2015 18:41:30 Matthias Apitz wrote:
> Hello,
> I read that I should self-sign my pub key, but when I do this after
> creation, it says:
> $ LANG=C gpg2 --sign-key Matthias
> pub  rsa2048/AA1EF4741F9046D4
>      created: 2015-12-25  expires: never       usage: SC
>      trust: ultimate      validity: ultimate
> sub  rsa2048/D6AD2EFF41863FE4
>      created: 2015-12-25  expires: never       usage: E
> [ultimate] (1). Matthias Apitz (GnuPG v2) <guru at>
> "Matthias Apitz (GnuPG v2) <guru at>" was already signed by key
> AA1EF4741F9046D4 Nothing to sign with key AA1EF4741F9046D4
> Key not changed so no update needed.
> What I do wrong?

You didn't do anything wrong. When you create a new key it is automatically 
self-signed. A long time ago this was not necessarily the case. Today the 
above advice is still correct, but probably no longer necessary.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part.
URL: </pipermail/attachments/20151225/784bba8c/attachment.sig>

More information about the Gnupg-users mailing list