Secure APT and the new archive key
I think it needs to be more widely publicised that you need to do something like:
apollock@icarus:~$ GET http://ftp-master.debian.org/ziyi_key_2006.asc | sudo apt-key add - gpg: no ultimately trusted keys found OK
to get APT to continue to be able to verify packages.