1. Forum
  2. Usenet
  3. COMP.SECURITY.PGP.DISCUSS

  • KeyID format

    From Miner@21:1/5 to All on Sun Jun 19 11:58:46 2022
    How to change keyid format from 40 to 16 digits lenght when GnuPG
    verify a signature?

    --
    Miner

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From David W. Hodgins@21:1/5 to Miner on Sun Jun 19 09:47:36 2022
    On Sun, 19 Jun 2022 07:58:46 -0400, Miner <invalid@invalid.invalid> wrote:

    How to change keyid format from 40 to 16 digits lenght when GnuPG
    verify a signature?

    The keyid may be specified using 40 hex characters or using 8 hex characters. gpg --list-key 0xA97B385144E498D9157EDA1039B84EA598B013E0
    and
    gpg --list-key 0x98B013E0

    The leading 0x can be ommitted. It's used for consistency with old versions
    of pgp.

    Note the 8 hex char version is identical to the last 8 hex characters of the long version.

    If you're asking how to get gpg to only show the short version, I don't think it can be done. The long version exists and is used as there have been key id collisions using only the 8 hex character version.

    While the short version is still allowed, there is a risk that it may match more than one key. Continue using it at your own risk.

    Regards, Dave Hodgins

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From David E. Ross@21:1/5 to Miner on Sun Jun 19 08:33:19 2022
    On 6/19/2022 4:58 AM, Miner wrote:
    How to change keyid format from 40 to 16 digits lenght when GnuPG
    verify a signature?


    The long "key ID" (40 hex digits) is actually the key's fingerprint.

    Actual key IDs are 8 hex digits. For DH/DSS keys and modern RSA keys ,
    the last 8 hex digits of its fingerprint are the key ID. For legacy RSA
    keys, the key ID is distinct from the key ID.

    --
    David E. Ross
    "A Message to Those Who Are Not Vaccinated"
    See my <http://www.rossde.com/index.html#vaccine>.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Miner@21:1/5 to David E. Ross on Sun Jun 19 16:17:30 2022
    David E. Ross wrote:

    On 6/19/2022 4:58 AM, Miner wrote:
    How to change keyid format from 40 to 16 digits lenght when
    GnuPG verify a signature?

    The long "key ID" (40 hex digits) is actually the key's
    fingerprint.

    Actual key IDs are 8 hex digits. For DH/DSS keys and modern
    RSA keys , the last 8 hex digits of its fingerprint are the key
    ID. For legacy RSA keys, the key ID is distinct from the key
    ID.

    gpg: Signature made Sun Jun 19 14:24:02 2022
    gpg: using EDDSA key ooooooooooooooooooooooooxxxxxxxxxxxxxxxx

    In this example GnuPG concatenate unknown digits to my Key ID.

    "xxxxxxxxxxxxxxxx" correspondent to my key ID. What is "oooooooooooooooooooooooo" I have no idea. Could anyone tell me
    what is it?
    --
    Miner

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From David W. Hodgins@21:1/5 to Miner on Sun Jun 19 13:09:26 2022
    On Sun, 19 Jun 2022 12:17:30 -0400, Miner <invalid@invalid.invalid> wrote:
    gpg: Signature made Sun Jun 19 14:24:02 2022
    gpg: using EDDSA key ooooooooooooooooooooooooxxxxxxxxxxxxxxxx
    In this example GnuPG concatenate unknown digits to my Key ID. "xxxxxxxxxxxxxxxx" correspondent to my key ID. What is "oooooooooooooooooooooooo" I have no idea. Could anyone tell me
    what is it?

    https://en.wikipedia.org/wiki/Public_key_fingerprint

    Regards, Dave Hodgins

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)