Your GPG client notified you that your keypair will soon expire, or has already expired. Here is what to do.
If you're using the built-in GPG encryption in Thunderbird 78+, you can extend your key from the Thunderbird key manager.
gpg --list-secret-keys
. Note your key ID (after the slash).gpg --edit-key KEY_ID
list
key 0
expire
. You'll probably have to unlock your key with its passphrase.key 1
and repeat step 5.list
.save
when you're done.gpg --keyserver keyserver.ubuntu.com --send-keys KEY_ID
Note that the private key can never expire. In the GPG shell, you can type help
for an overview of available commands.
We recommend you extend your existing key instead.
In your own GPG setup you may choose to delete your expired key. You don't need to do this, and you won't be able to open old e-mail that was encrypted with your expired key.
If you want to get rid of your old key:
gpg --list-keys
and then use gpg --delete-secret-and-public-keys KEY_ID
.In case you use the same public key on multiple machines, you need to update these keys, too. We have a separate card on how to do this.
gpg your.name.asc
pub rsa2048 2015-04-13 [SC] [expires: 2022-03-25]
7D328E3BD331444A254828F82ADEW7A971B89A2B6
uid Your Name <your.name@makandra.de>
sub rsa2048 2015-04-13 [E] [expires: 2022-03-25]
Please export and send your public key to ops@makandra.de so they can update keys.makandra.de. See this card for how to do it