>>>>> On Wed, 4 Jul 2018, Robin H Johnson wrote: >> > b. Signing subkey: 1 year maximum >> >> > 5. Key expiration date renewed at least 2 weeks before the >> > previous expiration date.
> Only catch is that if I was doing it 2 weeks before, I'd want to > push it out another year or 6 months (depending on what), so it > would briefly be valid for 54 weeks. Exactly, and that would be forbidden by the new policy. Also I don't see why a shorter expiry of the subkey should be mandatory. Has the current policy (which permits same expiry of main key and subkey) caused any issues in the past? Ulrich
pgpJfluJIM0_V.pgp
Description: PGP signature
