I think this year’s key post-keysigning-party work was the least effort ever. I wanted to write down the procedure for anyone interested.
First a few assumptions:
- you have been given a file that contains the fingerprints and names of everyone that attended the keysigning party,
- you verified the file’s sha1 sum at the event,
- this file’s sha1 sum was verified at the event by everyone whose keys you want to sign,
- you trust that the people whose keys you are signing did not lie about checking the sha1 sum of the file.