1 <?xml version=
"1.0" encoding=
"utf-8" standalone=
"no"?>
2 <!DOCTYPE refentry PUBLIC
"-//OASIS//DTD DocBook XML V4.2//EN"
3 "http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd" [
5 <!ENTITY % aptent SYSTEM
"apt.ent">
8 <!ENTITY % aptverbatiment SYSTEM
"apt-verbatim.ent">
17 <refentrytitle>apt-key
</refentrytitle>
18 <manvolnum>8</manvolnum>
19 <refmiscinfo class=
"manual">APT
</refmiscinfo>
22 <!-- Man page title -->
24 <refname>apt-key
</refname>
25 <refpurpose>APT key management utility
</refpurpose>
31 <command>apt-key
</command>
32 <arg><option>--keyring
<replaceable>filename
</replaceable></option></arg>
33 <arg><replaceable>command
</replaceable></arg>
34 <arg rep=
"repeat"><option><replaceable>arguments
</replaceable></option></arg>
38 <refsect1><title>Description
</title>
40 <command>apt-key
</command> is used to manage the list of keys used
41 by apt to authenticate packages. Packages which have been
42 authenticated using these keys will be considered trusted.
46 <refsect1><title>Commands
</title>
48 <varlistentry><term>add
<replaceable>filename
</replaceable></term>
52 Add a new key to the list of trusted keys. The key is read
53 from
<replaceable>filename
</replaceable>, or standard input if
54 <replaceable>filename
</replaceable> is
<literal>-
</literal>.
60 <varlistentry><term>del
<replaceable>keyid
</replaceable></term>
64 Remove a key from the list of trusted keys.
71 <varlistentry><term>export
<replaceable>keyid
</replaceable></term>
75 Output the key
<replaceable>keyid
</replaceable> to standard output.
82 <varlistentry><term>exportall
</term>
86 Output all trusted keys to standard output.
93 <varlistentry><term>list
</term>
104 <varlistentry><term>finger
</term>
108 List fingerprints of trusted keys.
115 <varlistentry><term>adv
</term>
119 Pass advanced options to gpg. With adv --recv-key you can download the
127 <varlistentry><term>update
</term>
131 Update the local keyring with the keyring of Debian archive
132 keys and removes from the keyring the archive keys which are no
142 <refsect1><title>Options
</title>
143 <para>Note that options need to be defined before the commands described in the previous section.
</para>
145 <varlistentry><term>--keyring
<replaceable>filename
</replaceable></term>
146 <listitem><para>With this option it is possible to specify a specific keyring
147 file the command should operate on. The default is that a command is executed
148 on the
<filename>trusted.gpg
</filename> file as well as on all parts in the
149 <filename>trusted.gpg.d
</filename> directory, through
<filename>trusted.gpg
</filename>
150 is the primary keyring which means that e.g. new keys are added to this one.
156 <refsect1><title>Files
</title>
161 <varlistentry><term><filename>/etc/apt/trustdb.gpg
</filename></term>
162 <listitem><para>Local trust database of archive keys.
</para></listitem>
165 <varlistentry><term><filename>/usr/share/keyrings/debian-archive-keyring.gpg
</filename></term>
166 <listitem><para>Keyring of Debian archive trusted keys.
</para></listitem>
169 <varlistentry><term><filename>/usr/share/keyrings/debian-archive-removed-keys.gpg
</filename></term>
170 <listitem><para>Keyring of Debian archive removed trusted keys.
</para></listitem>
177 <refsect1><title>See Also
</title>
179 &apt-get;, &apt-secure;