Investigate if we could have our signing key certified by other well-known role keys
Originally created by @sajolida on #10651 (Redmine)
In the process of documenting expert instructions to verify our signing key we are currently relying on Stefano Zacchiroli as he is in the Debian keyring. But it can feel weird to ask people to transitively trust an individual they doesn’t know. Even if cryptographically speaking it doesn’t make much different, from a user point of view it might be better to use a role key instead, maybe a Debian role key if that’s possible…
Having our key signed by other role keys such as Riseup collective, even if they are not in the Debian keyring, would be nice too and could be complementary.