Secure email & authentication

If you are so inclined, you can send me encrypted email using either S/MIME or PGP. You can also verify the authenticity of my Git commits and emails that I send you.

S/MIME

S/MIME is the preferred method to send me encrypted mail. I also sign all the email that I send from my personal account so that you can verify that I actually sent it. All S/MIME certificates that I use will be issued by a trusted CA.

Previous certificates are listed in the archive below to facilitate validation of previously signed messages.

Current S/MIME certificate

This is my current certificate that is valid until 2027-12-22.

Serial number: 316EC86923EA72CE0F96BE76339E5ABD
Issuer: CN = Certum SMIME RSA CA, O = Asseco Data Systems S.A., C = PL
Key type: RSA
Valid from: 2026-02-17T18:27:42Z
Valid until: 2027-12-22T09:53:28Z
Key size: 4096

Download PEM

PGP

If you prefer, you can send me encrypted email and files using PGP. I also sign my Git commits with my PGP key. You can fetch my current PGP key using WKD with the following one liner:
gpg --auto-key-locate clear,wkd --locate-keys daniel@colquitt.xyz
Your email client may even do this for you automatically.

Previous keys are listed in the archive below to facilitate validation of previously signed messages, files, and commits.

Master PGP key

My Master PGP key is used only to sign and certify new keys. This key will not be used for day-to-day encryption or signing of emails, files, or commits. The Master PGP key can be used to verify that an encryption or signing key is owned by me. All keys I used will be certified by my Master PGP key.

Key ID: B8FE 5C25 958E E458
Expires: Never
Key type: EdDSA
Fingerprint: 054D 2AE8 C0D2 4FD8 16FA A8BE B8FE 5C25 958E E458

Download Public Key

Current key

This is my current key.

Key ID: 5B8A 22CF D343 EDA1
Valid from: 2026-02-19
Valid until: 2028-02-18
Key type: EdDSA/EDCH
Fingerprint: DCFB A791 066A 8CE9 4774 1EA3 5B8A 22CF D343 EDA1

Download Public Key

Archive

Previously used certificates and keys are listed below to facilitate validation of previously signed messages.

Previous S/MIME certificates

2026-01-01 to 2026-02-17

This certificate was revoked on 2026-02-17 as part of process testing.

Serial number: 5C308C115293B9D0B57F804D2E42C5C8
Issuer: CN = Certum SMIME RSA CA, O = Asseco Data Systems S.A., C = PL
Key type: RSA
Valid from: 2026-01-01T15:03:00Z
Valid until: 2026-02-17T18:57:00Z
Key size: 4096

Download PEM

2025-12-22 to 2026-01-01

This certificate was revoked on 2026-02-17 as part of process testing.

Serial number: 3424ACCD9E161F904F1D64C039233047
Issuer: CN = Certum SMIME RSA CA, O = Asseco Data Systems S.A., C = PL
Key type: RSA
Valid from: 2025-12-22T09:53:29Z
Valid until: 2026-01-01T15:42:00Z
Key size: 4096

Download PEM

2024-02-04 to 2026-02-03

This certificate expired on 2026-02-03.

Serial number: 3F629505DDD826BCA178C4E142F70412
Issuer: CN = SSL.com Client Certificate Intermediate CA RSA R2, O = SSL Corp, L = Houston, S = Texas, C = US
Key type: RSA
Valid from: 2024-02-04T18:57:53Z
Valid until: 2024-02-03T18:57:53Z
Key size: 4096

Download PEM

Previous PGP keys

2022-02-07 to 2026-02-19

This key was replaced as part of normal key rotation.

Key ID: D3E3 B917 8769 9C75
Valid from: 2022-02-07
Valid until: 2026-02-19
Key type: EdDSA/EDCH
Fingerprint: A7AA 75FD 6A11 F453 DE50 1E38 D3E3 B917 8769 9C75

Download Public Key