You will find two Arch Linux related GPG keys I use:
- My Arch Linux Packager Key is used to sign all my packages. I will also use this key to sign other developer’s keys when I were able to verify their identity; mostly by meeting them in person. You may also use this key if you have to send me an encrypted message.
- The Arch Linux Master Key is only used to sign other developer’s keys. Note that I will only check if this certain developer has access to our repository. In addition to this you will never find packages signed by this key. See master-key.archlinux.org for more details.