diff --git a/offline_signing/sign.sh b/offline_signing/sign.sh
index 9e77a6f5f3..e27b3c9625 100755
--- a/offline_signing/sign.sh
+++ b/offline_signing/sign.sh
@@ -1,17 +1,19 @@
 #!/bin/bash
 
 set -ex
-DATA_DIR="$1"
+DATA_DIR="$(readlink -f "$1")"
+KEYS_DIR="$(readlink -f "$(dirname "$0")")"
 
-gpg --verify "${DATA_DIR}/coreos_production_update.bin.bz2.sig"
-gpg --verify "${DATA_DIR}/coreos_production_update.zip.sig"
+gpg2 --verify "${DATA_DIR}/coreos_production_update.bin.bz2.sig"
+gpg2 --verify "${DATA_DIR}/coreos_production_update.zip.sig"
 bunzip2 --keep "${DATA_DIR}/coreos_production_update.bin.bz2"
 unzip "${DATA_DIR}/coreos_production_update.zip" -d "${DATA_DIR}"
 
 export PATH="${DATA_DIR}:${PATH}"
 
-core_sign_update \
+cd "${DATA_DIR}"
+./core_sign_update \
     --image "${DATA_DIR}/coreos_production_update.bin" \
-    --output "${DATA_DIR}/update.gz" \
-    --private_keys "devel.key.pem:prod-2.key.pem" \
-    --public_keys  "devel.pub.pem:prod-2.pub.pem"
+    --output "${DATA_DIR}/coreos_production_update.gz" \
+    --private_keys "${KEYS_DIR}/devel.key.pem:${KEYS_DIR}/prod-2.key.pem" \
+    --public_keys  "${KEYS_DIR}/devel.pub.pem:${KEYS_DIR}/prod-2.pub.pem"