Revoke/Remove Ray's keys

[Biswa96]

Is there any way to know if a package was signed by him?

[jeremyd2019]

1. signer info is on packages.msys2.org, but that would only tell you about current packages I think
2. a script could be made pretty straightforwardly I think to look at all .sig files for his key id (hint: see https://github.com/msys2/msys2-web/blob/master/app/pgp.py#L36)

[lazka]

good point, would be good to know first

[lazka]

signatures of all *.sig files

• 8801 signatures: https://keyserver.ubuntu.com/pks/lookup?search=0x5F92EFC1A47D45A1&fingerprint=on&op=index
• 9530 signatures: https://keyserver.ubuntu.com/pks/lookup?search=0xFA11531AA0AA7F57&fingerprint=on&op=index
• 6519 signatures: https://keyserver.ubuntu.com/pks/lookup?search=0x628F528CF3053E04&fingerprint=on&op=index

so all good

[elieux]

Let's do it?

[elieux]

We have to deal with the master key as well.