FAQ appears to be slightly empirically off but thanks for publishing this repo

[midnightmagic]

• I assert emails from January 2015 can verify against the current modern gmail DKIM keys. I believe the key rotation was patchy/rolling and took a long time. I also have emails from April 2015 which don't, but do validate against the key in this repository as of commitid 44e0c365604f17d9ac0d6cfad9136d33b1565e4a.
• The original DKIM key length Google was using was at least as small as 512-bits, and it was cracked very quickly.
• Theoretically, Google themselves could have forged the email "yesterday" with their old keys.
• Who knows if this was actually from Hunter's laptop.
• The best way for random other people to validate the key is, per Mr. Maxwell's suggestion, to look at their own old emails and triangulate/validate with the key against them, especially if they have old copies of their emails that have been stored out of Google or otherwise under their sole control since 2015ish.
• There's no real way to prove context or accuracy of content. Thank you for implying that in your FAQ.

Thank you very much for publishing this repository, Robert. It's a fun diversion. :) Plus, you gave me reason to find and locate some emails I thought I'd lost. (Original pointer to this repository due to Mr. Maxwell, for which I am very grateful.)

[midnightmagic]

.. that is the current size. Its size at launch was closer to 512 bits. Thanks for the vandalism though.

https://www.kb.cert.org/vuls/id/268267