-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

For nm.debian.org, at 2022-07-18:
For the past 8-9 months, since November last year, I have worked with Robin Jarry on buildbot and aerc.

For this past work, Robin Jarry sent mails using the email address robin@jarry.cc
which is the one they're using on nm.debian.org.

I have made the following checks for their keys:

1. Checked signs in atleast 5-6 emails (and commits) in past month

2. Checked their signed commits to the repositories. I checked several of his upstream project
   repositories releases like aerc, dlrepo, sysrepo-python etc. all of which are all signed with his gpg key.

3. Made sure that they are able to decrypt the messages sent to them with their GPG key

I've made sure that they are able to decrypt encrypted messages sent to this key
and that they're able to sign messages with the same key.

Due to the long-term interactions we had, I'm convinced that Robin Jarry as they
present themselves on nm.debian.org is the rightful owner of both email
robin@jarry.cc and GPG key DC07 18E3 22E2 C760 5EBD  C831 4695 7EC0 8FD0 FE90.
-----BEGIN PGP SIGNATURE-----
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=tD1g
-----END PGP SIGNATURE-----