Hello, As Tobias explains at and as can be seen from ‘.guix-authorizations’, the (guix openpgp) and (guix git-authenticate) machinery reports the fingerprint of subkeys on signatures (when subkeys are used) rather than the fingerprint of primary keys. This should be changed to report primary keys, at least optionally. Ludo’.