Skip to content

kyealexander/public-keys

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
README.md
README.md
 
 
publickey.asc
publickey.asc
 
 

Repository files navigation

Public GPG Keys

This repository contains my public GPG keys used for signing GitHub commits, verifying my authenticity, and encrypting messages that only I (holder of the private key) can decrypt.

Key Information

  • Key File: publickey.asc
  • Key Owner: Kye Murphy
  • Email: [email protected]
  • Key Fingerprint: 262D CF73 992A 7439 3606 B004 5CA2 3837 5411 ECD7
  • Key Usage:
    • Signing GitHub commits and tags.
    • Verifying authenticity of messages and files.
    • Encrypting sensitive data (if someone wants to send me something confidential).

How to Import My Public Key

  1. Download publickey.asc:
  • Click on the file in this repo, then Raw, to view or save the ASCII text.
  • Or download directly via:
curl -O https://raw.githubusercontent.com/kyealexander/public-keys/main/publickey.asc
  1. Import into your local GPG keyring:
gpg --import publickey.asc
  1. Verify the key’s fingerprint:
gpg --fingerprint [email protected]

Make sure it matches the fingerprint shown above. For maximum security, confirm the fingerprint with me via another communication channel (e.g., email, or in person).

Verifying My Signed Commits

When I sign my commits on GitHub:

  1. You’ll see a “Verified” label on each signed commit in the repository’s commit history.
  2. Locally, you can run:
git log --show-signature

This command will show the signature details (which key was used, if it’s trusted, etc.). If the signature is valid, you’ll see something like “Good signature from Kye Murphy.”

Frequently Asked Questions

Q: Can I use this key to send you encrypted messages or files?
A: Absolutely! Encrypt away—only I can decrypt them using my private key.

Q: How do I trust your key?
A: Always verify the fingerprint with me via a secure or separate channel. If the fingerprint matches, you can safely trust that this is my genuine public key.

Q: What if the key is updated or revoked?
A: If I rotate to a new key or revoke this one, I’ll update this repository accordingly and publish a revocation certificate or a new .asc file.

License and Permissions

  1. Public Key Use: You are free to share, redistribute, and use my public key (publickey.asc) for encryption and verification. That’s the whole point of a public key—anyone should be able to access it.
  2. Documentation: The text and examples in this repository (including this README) are provided under the MIT License. You’re welcome to copy, modify, and reuse any of this documentation in your own projects.
  3. Disclaimer: This public key is offered “as is” without warranty of any kind. You are responsible for verifying its authenticity and ensuring you have the correct fingerprint before using it for security-related purposes.

If you have any questions, concerns, or trouble importing the key, feel free to reach out at [email protected]

About

A repository to share my GPG public keys.

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published