@soatok Interesting that revocation is *only* allowed when another key is live.

Does this mean that there would be no equivalent of a "revocation certificate", a pre-signed message that can be stored offline and produced at any later time to just say "this key is revoked"?

I guess you could mimic that by making an AddKey + RevokeKey pair. K1 adds K2, K2 revokes K1.