A key doesn't get imported from one of the keyservers

Vincent Breitmoser look at my.amazin.horse
Tue Aug 3 12:09:27 CEST 2021

> Okay, then... All the keyservers have the key. But keys.openpgp.org
> doesn't let it get imported because the owner didn't consent to making
> his email address publicly known by verifying his email address.
> Which means that the owner doesn't care much about this, otherwise he
> would not publish the key to the other servers.

Either that, or they don't know about it, or the key was published by someone
else since there are no checks on the other servers. There are currently ~250k
verified addresses, typically it depends on the user's client software (e.g.
GPGTools for macOS has great support for keys.o.o verification, GPG4win has

> Also, how do I as an owner... apply for verification?
> gpg --export your_address at example.net | curl -T - https://keys.openpgp.org
> And then follow the instructions at the outputted URL?

Yep, that is one way.

> Will it invalidate my key (previous version of the key)?

Only one key can be verified for any email address at one time, so it's possible
to replace keys for an email address, or remove them. As long as it's the same
key, all updates to that key will be merged as usual.


 - V

More information about the Gnupg-users mailing list