From 1a4ef8a9756ef628573c1dd067e62899047873eb Mon Sep 17 00:00:00 2001
From: Heiko Schaefer <heiko@schaefer.name>
Date: Sat, 25 Nov 2023 13:04:21 +0100
Subject: [PATCH] clarify: the flag is not always set

---
 book/source/08-signing_components.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/book/source/08-signing_components.md b/book/source/08-signing_components.md
index d132e01..24b7d7f 100644
--- a/book/source/08-signing_components.md
+++ b/book/source/08-signing_components.md
@@ -49,7 +49,7 @@ Third-party signatures are used to make specific statements:
 - revoking, and thus invalidating, prior third-party signature statements
 
 ```{note}
-The **certify others** [key flag](https://www.ietf.org/archive/id/draft-ietf-openpgp-crypto-refresh-12.html#name-key-flags) (`0x01`) is required to issue third-party signatures. Only the certificate's primary holds this key flag.
+The **certify others** [key flag](https://www.ietf.org/archive/id/draft-ietf-openpgp-crypto-refresh-12.html#name-key-flags) (`0x01`) is required to issue third-party signatures. Only the certificate's primary can hold this key flag.
 ```
 
 ### Distinct functions of self-signatures and third-party signatures