Active Signing Keys

The Swift project uses one set of keys for snapshot builds, and separate keys for every official release. We are using 4096-bit RSA keys.

The following keys are being used to sign toolchain packages:

Download
https://swift.org/keys/release-key-swift-5.x.asc
Fingerprint
A62A E125 BBBF BB96 A6E0 42EC 925C C1CC ED3D 1561
Long ID
925CC1CCED3D1561

To import the key, run:

  $ gpg --keyserver hkp://keyserver.ubuntu.com \
        --recv-keys \
        'A62A E125 BBBF BB96 A6E0  42EC 925C C1CC ED3D 1561'

Or:

  $ wget -q -O - https://swift.org/keys/release-key-swift-5.x.asc | \
    gpg --import -
Download
https://swift.org/keys/release-key-swift-6.x.asc
Fingerprint
52BB 7E3D E28A 71BE 22EC 05FF EF80 A866 B47A 981F
Long ID
EF80A866B47A981F

To import the key, run:

  $ gpg --keyserver hkp://keyserver.ubuntu.com \
        --recv-keys \
        '52BB 7E3D E28A 71BE 22EC 05FF EF80 A866 B47A 981F'

Or:

  $ wget -q -O - https://swift.org/keys/release-key-swift-6.x.asc | \
    gpg --import -