PGP Keys

• keys-2013rsa-2020cv25519 : both current main keys for Phil Pennock
  1. 4833 8929 24C6 0A7A E666  D32A 1DA3 E68F 41CE ECAC : 2020-onwards Curve 25519 key
  2. ACBB 4324 393A DE35 15DA  2DDA 4D1E 900E 14C1 CC04 : 2013-onwards RSA-4096 key
• key2020-cv25519 : current Curve 25519 key for Phil Pennock
  4833 8929 24C6 0A7A E666  D32A 1DA3 E68F 41CE ECAC
  Ed25519 main key, Ed25519 signing sub-key, Cv25519 encryption sub-key.
• key2013-rsa (aka 0x4D1E900E14C1CC04) : current RSA key for Phil Pennock
  ACBB 4324 393A DE35 15DA  2DDA 4D1E 900E 14C1 CC04
  RSA-4096 main key; both RSA-4096 and Ed25519 permanent signing sub-keys; both RSA-4096 and Cv25519 annual-issue two-year-duration encryption sub-keys.
  Also key2013-rsa-no25519subkeys for the same key without the Curve 25519 subkeys included.
• 0x3903637F : historical key for Phil Pennock; revoked

The use of keyids, and the length of keyid chosen, for filenames has no impact upon security in this context. They are merely convenient identifiers. I could call them "blue" and "green" to similar effect. Concerns about short keyids are because of the risk of “collision” in public directories where an attacker can upload keys. This is not a public directory.