Key endpoints live under /v1/projects/{project_id}/keys. They let you inspect rotation schedules, rotate immediately, or revoke compromised keys.
curl -X POST https://api.secryn.com/v1/projects/proj_123/keys/envelope/rotate \
-H "Authorization: Bearer $TOKEN"
Responses include the new key ID and the status of background re-encryption jobs so you can monitor progress.