PGP Public Key

For encrypted email, signed commits, and file verification.

ASCII (.asc) Binary (.gpg) Age

Full public key

Key details

Fingerprint

4C9E 36CC 4428 74D5 D7D4 DF90 F92D 8E91 3498 B59C

Key ID

F92D8E913498B59C

UID

Mihail Fedorov (https://fedorov.net) <>

Keyserver

keys.openpgp.org · also available via WKD auto-discovery

Warrant canary 🐥

This canary is signed with the key above, timestamped via OpenTimestamps, and independently archived at the Wayback Machine. It should be updated periodically. If it goes stale, either something happened, or I got lazy, or I abandoned the idea entirely. Draw your own conclusions.

Detached signature

Statement (.txt) Signature Timestamp Wayback Machine

How to use this key

First, import my key. You can use the downloaded file, fetch it from a keyserver by ID, or let WKD find it automatically by email address.

gpg --import pubkey.asc
gpg --recv-keys F92D8E913498B59C
gpg --locate-keys [email protected]

If you received a signed message or file from me, verify the signature. Always confirm the fingerprint matches the one above.

gpg --verify message.sig message.txt

If git commits are signed with this key, clone the repo, import the key, and check any commit. A valid signature will show Good signature from "Mihail Fedorov" with the matching fingerprint.

gpg --import pubkey.asc
git log --show-signature -1

To send me something encrypted, use GPG or age — age is simpler if you don't already have a GPG keyring.

# GPG
gpg --import pubkey.asc
gpg --encrypt --armor --recipient F92D8E913498B59C message.txt

# age
age -r age1yyl589fa0apchkwwp7wtzp39z92fjzwrupc0whwmgkqp309y6cjs9ksuc9 -o message.enc message.txt

To verify the warrant canary, download the statement, signature, and timestamp files:

gpg --verify canary.txt.asc canary.txt
ots verify canary.txt.ots