debian-archive-keyring is not supurflous; apt's copy of the keyring is out of date (containing only the 2005 and 2006 keys, no key for stable, and no key for volatile) and should be removed; apt should be left depending on debian-archive-keyring.
(There might be a smarter way to handle the keyrings that allows dropping debian-archive-keyring's dependency on gpg.) -- see shy jo
signature.asc
Description: Digital signature
