// glossary / transition-statement

Transition statement.

A signed message announcing "I'm rotating from old key X to new key Y." Lists both fingerprints, signed with the OLD key so existing trust attests to the rotation. The convention for key rotation in the OpenPGP community, especially among OSS maintainers and anyone whose key is part of public infrastructure.

// definition

A transition statement is a clearsigned plaintext message announcing that a PGP key holder is rotating from one key to another. It lists both fingerprints in a fixed format and is signed with the old key — turning the statement into a cryptographic assertion that the same person controls both keys.

What it is.

Key rotation creates a problem for everyone who already has your old fingerprint: how do they know the new fingerprint is also you and not someone impersonating? You can publish the new fingerprint on your website, but a website can be hijacked. You can email everyone, but an attacker can do that too. The strongest cryptographic answer is to use your old key — which they already trust — to sign a statement vouching for the new one.

A transition statement combines:

Both old and new fingerprints in a fixed, readable format.
An effective date.
An explanation of the reason (optional but conventional).
A signature from the OLD key.

Anyone who already has and trusts your old key can verify the signature on the statement. A valid signature is cryptographic evidence "the old-key holder authored this statement," and the statement asserts "this new key is also mine." Trust transfers.

Why it matters.

Transition statements are the standard convention for clean key rotation in OpenPGP. They show up in:

OSS project key rotations — published in release notes, README, project mailing list.
Personal key rotations — emailed to active contacts, posted on personal websites.
Project succession — outgoing maintainer announces the incoming maintainer's key.
Algorithm upgrades — moving from RSA to Ed25519 with the old key vouching for the new.

The convention dates back to GnuPG-era key-rotation practice and is reused as-is for any modern key rotation. PGPony, GnuPG, and any OpenPGP tool with clearsign support can verify a transition statement against the old key.

// transition statement template

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 I am transitioning from PGP key: OLD: AAAA BBBB CCCC DDDD EEEE FFFF 1111 2222 3333 4444 to my new key: NEW: 5555 6666 7777 8888 9999 AAAA BBBB CCCC DDDD EEEE Effective: 2026-05-29 Both keys are mine. Please update your records and start encrypting to the new key. The old key remains valid for decryption of past messages but will be revoked on 2026-08-29. — Casey Smith <casey@example.com> -----BEGIN PGP SIGNATURE----- [signature from the OLD key] -----END PGP SIGNATURE-----

// in PGPony Producing a transition statement uses the same flow as any other clearsigned message: the Encrypt tab in Sign-only mode, signing with your old key, with the new fingerprint listed in the body. PGPony's Decrypt tab automatically verifies received transition statements against the signer's key.

Transition statement.

What it is.

Why it matters.

Related terms

Related guide

Get PGPony

Transition statement.

What it is.

Why it matters.

Related terms

Related guide

Rotate your PGP key safely

Get PGPony