diff --git a/FAQ.md b/FAQ.md
index dc1eb88..45c5798 100644
--- a/FAQ.md
+++ b/FAQ.md
@@ -106,7 +106,8 @@ You could, however, imitate this encryption process in your own tool/application
 
 ### How can I securely clone/download your project?
 
-As of the PrivateBin 1.0 release we [cryptographically sign](https://git-scm.com/book/uz/v2/Git-Tools-Signing-Your-Work) our git commits and tags, so that you can verify we actually developed the software. Should the signature ever change, please look for a signed message of the current developers, which states that there is a new developer with a new signature.
+As of the PrivateBin 1.0 release we [cryptographically sign](https://git-scm.com/book/uz/v2/Git-Tools-Signing-Your-Work) our git commits and tags, so that you can verify we actually developed the software. Later, we also [started signing the release archives on GitHub](https://github.com/PrivateBin/PrivateBin/issues/219).
+Should the signature ever change, please look for a signed message of the current developers, which states that there is a new developer with a new signature or another valid reason, why the keys change.
 Here is the workflow you should use for verifying commits or tags:
 
 1. Download our public keys [from PrivateBin.info](https://privatebin.info/credits.html).