From b1be795d047e9aa7513b2a03c21cd2d44338c89d Mon Sep 17 00:00:00 2001
From: Al Bowles <bowlesalx@gmail.com>
Date: Mon, 13 Jun 2022 18:24:55 -0500
Subject: [PATCH] Clarify instructions for signing subkey

---
 dev_guides/commit_signing.md | 17 ++++++++++-------
 1 file changed, 10 insertions(+), 7 deletions(-)

diff --git a/dev_guides/commit_signing.md b/dev_guides/commit_signing.md
index 58b7973..5f94ee6 100644
--- a/dev_guides/commit_signing.md
+++ b/dev_guides/commit_signing.md
@@ -19,17 +19,20 @@ rc:
 1. Type a passphrase (twice)
 
 # Create a signing keypair
-Add a signing subkey
+1. Add a signing subkey
 
-    gpg --edit-key my@email.addr
-    gpg> addkey
-    [ passphrase ]
+        gpg --expert --edit-key my@email.addr
+        gpg> addkey
 
-Select [ECC] (sign / authenticate / encrypt?) for kind of key, 4096 bits, valid for 180d
+1. Select option `(10) ECC (sign only)` for the key type
+1. Select option `(1) Curve 25519` for the elliptic curve
+1. Set a validity period of your choice, ideally less than 1 year
+1. Accept the prompts and type a passphrase (twice)
+1. Save and exit
 
-    gpg> save
+        gpg> save
 
-Create revocation certificate
+# Create revocation certificate
 
     gpg --output \<my@email.addr\>.gpg-revocation-certificate --gen-revoke my@email.addr