> pass init <new_gpg_ID> will do that. > Be sure to use the ID you get by running > gpg --list-key <email> > as only that will be unique. As I know you can use the global keyring id (gpg2 -K) or the encryption subkey (gpg2 -K --with-subkey-fingerprint). This allow to migrate to a new subkey when the old expires. Stacy