Difficulty in understanding how PGP secret keys are synced

[jokester]

I am using 2 PGP keys (A and B) and 2 devices (P and Q) with keybase CLI client. After importing the keys to keybase and removed private key from keybase site (sorry cannot remember exact order of operations), I found that the export of private (secret) key are working differently in 2 devices:

• keybase client in P can export secret key of both A and B
• keybase client in Q can export secret key of A but not B

After reading Local Key Security I assume P and Q now have different set of secret keys in their 'keybase local keyring', but cannot figure out a way to inspect under the hood.

Can I ask what is a supposed way to synchronize the secret key again (with keybase, CLI only if possible) ?

[maxtaco]

We don't have a great story for sync'ing your PGP keys across your devices. We only have our original method, which was based on the strength of your (stretched) keybase passphrase, and then "push to server." If we could wave a magic wand, we would replace that with a KBFS-based, or Per-User-Key-based system, which wouldn't be dependent upon password security (which doesn't have great entropy). However, we haven't gotten around to it yet, it's been lower priority than the other things we're working on. Thanks for your feedback!