New OpenPGP keys to sign packages

[Jean-Sébastien Pédron]

Hi!

We are replacing our OpenPGP keys used to sign packages with new strong
keys.

The reasons behind this change and how to import and use the keys are
detailed on the rabbitmq.com website:
http://www.rabbitmq.com/news.html#2016-05-25T18:00:00+03:00

In particular, it will fix a warning displayed by recent versions of apt
on Debian-like Linux distributions.

The next nightly build will use the new nightly key. The Debian
repository for the releases will be signed with the new release key
after this announce is posted.

We encourage you to import the new keys as soon as possible.

Thank you!

--
Jean-Sébastien Pédron
Pivotal / RabbitMQ

[Jean-Sébastien Pédron]

On 25/05/2016 17:31, Jean-Sébastien Pédron wrote:
> The Debian repository for the releases will be signed with the new
> release key after this announce is posted.

The Debian repository is now signed with the new release key.

If you already imported the new key, you won't see the "weak digest"
warning anymore in the case you had it before.

If you didn't imported the new key yet, you will get an error from
"apt-get update".

You may remove the old key with apt-key(1).