Are these GPG keys for Parrot legitimate?

When going through the “Fetch the key - Verify the repositories” section in the key verification docs I ended up getting two keys.

The top key looks good, but I’m not sure about the second:

pub rsa4096 2017-02-13 [SC]
3B3EAB807D70721BA9C03E55C7B39D0362972489
uid [ unknown] Parrot Project team@parrotsec.org
sub rsa4096 2017-07-03 [S]

pub rsa3072 2019-02-11 [SC] [expires: 2021-02-10]
813EEFE80280C579E2A1F5E6B56FFA946EB1660A
uid [ unknown] Parrot project team@parrotsec.org
sub rsa3072 2019-02-11 [E] [expires: 2021-02-10]

Thanks in advance!

What version of Parrot are you running?
Parrot Linux 4.8
Kernel release: 5.4.0-4parrot1-amd64

What method did you use to install Parrot?
Probably Debian Standard

Configured to multiboot with other systems?
No

If there are any similar issues or solutions, link to them below:

If there are any error messages or relevant logs, post them below:

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512



hello, the first key is an old parrot key
that i've created back in 2017,
and i would like to get rid as soon as possible

the second key is its replacement,
but to make the transition smoother,
we are providing both the keys at the moment

both keys are fine to me and
the system does not seem to be compromised

this is the fingerprint of the
valid keys i have on my keyring



sec   rsa4096 2017-02-13 [SC]
      3B3E AB80 7D70 721B A9C0  3E55 C7B3 9D03 6297 2489
uid           [  full  ] Parrot Project <team@parrotsec.org>
ssb#  rsa4096 2017-07-03 [S]
      6106 8337 6B83 49E3 CC8E  A974 ED05 F7B2 EC3C 9224

sec   rsa3072 2019-02-11 [SC] [expires: 2021-02-10]
      813E EFE8 0280 C579 E2A1  F5E6 B56F FA94 6EB1 660A
uid           [  full  ] Parrot project <team@parrotsec.org>
ssb   rsa3072 2019-02-11 [E] [expires: 2021-02-10]
      7DDB 9ECB B176 4E2A 5ABA  97F8 A914 951D F2E7 79AE




-----BEGIN PGP SIGNATURE-----
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=SWxK
-----END PGP SIGNATURE-----

1 Like

This topic was automatically closed 60 minutes after the last reply. New replies are no longer allowed.