This package contains the archive signing key for the eyrie.org Debian
archive, located at <http://archives.eyrie.org/debian/>. It is based
heavily on the debian-archive-keyring package, but with different keys.

Each actively used key is placed in /etc/apt/trusted.gpg.d/ to be used by
"apt" and its apt-key command in versions 0.6 and later. The signatures
of acquired Release files are checked against this key database. It
therefore contains all keys that are still used to sign eyrie.org packages
or may be used to sign them in the future.

Two additional files are also installed:

/usr/share/keyrings/eyrie-archive-keyring.gpg

    A keyring including all actively-used or soon-to-be-used keys that may
    sign Release files for eyrie.org repositories.

/usr/share/keyrings/eyrie-archive-removed-keys.gpg

    A keyring including all keys used by previous iterations of the
    archive. These keys are no longer used to sign Release files and may
    be insecure. Please do not use this keyring to verify Release file
    signatures.

To remove this key from your trusted keys, either remove the package
(preferred) or delete the trusted keys from /etc/apt/trusted.gpg.d/.

These keys are signed with Russ Allbery's personal key, which is part of
the Debian keyring.  To verify that signature, install this package and
install debian-keyring (or otherwise obtain a copy of the keyring from a
trusted source), and then run:

    gpg --import /usr/share/keyrings/eyrie-keyring.gpg
    gpg --check-sigs --keyring /usr/share/keyring/debian-keyring.gpg \
        FD9C5CF2890093F2 1C03273B388CB502

Please be aware that this signing key is used by automated processes on a
system over which I do not have physical control, and hence is not
maintained at the same level of security as a personal key. I believe the
key security is adequate for the purposes for which it's used, but you
should make your own decisions.
