apt-key.8.xml 5.0 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204
  1. <?xml version="1.0" encoding="utf-8" standalone="no"?>
  2. <!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.2//EN"
  3. "http://www.oasis-open.org/docbook/xml/4.2/docbookx.dtd" [
  4. <!ENTITY % aptent SYSTEM "apt.ent">
  5. %aptent;
  6. <!ENTITY % aptverbatiment SYSTEM "apt-verbatim.ent">
  7. %aptverbatiment;
  8. ]>
  9. <refentry>
  10. &apt-docinfo;
  11. <refmeta>
  12. <refentrytitle>apt-key</refentrytitle>
  13. <manvolnum>8</manvolnum>
  14. <refmiscinfo class="manual">APT</refmiscinfo>
  15. </refmeta>
  16. <!-- Man page title -->
  17. <refnamediv>
  18. <refname>apt-key</refname>
  19. <refpurpose>APT key management utility</refpurpose>
  20. </refnamediv>
  21. <!-- Arguments -->
  22. <refsynopsisdiv>
  23. <cmdsynopsis>
  24. <command>apt-key</command>
  25. <arg><option>--keyring <replaceable>filename</replaceable></option></arg>
  26. <arg><replaceable>command</replaceable></arg>
  27. <arg rep="repeat"><option><replaceable>arguments</replaceable></option></arg>
  28. </cmdsynopsis>
  29. </refsynopsisdiv>
  30. <refsect1><title>Description</title>
  31. <para>
  32. <command>apt-key</command> is used to manage the list of keys used
  33. by apt to authenticate packages. Packages which have been
  34. authenticated using these keys will be considered trusted.
  35. </para>
  36. </refsect1>
  37. <refsect1><title>Commands</title>
  38. <variablelist>
  39. <varlistentry><term>add <replaceable>filename</replaceable></term>
  40. <listitem>
  41. <para>
  42. Add a new key to the list of trusted keys. The key is read
  43. from <replaceable>filename</replaceable>, or standard input if
  44. <replaceable>filename</replaceable> is <literal>-</literal>.
  45. </para>
  46. </listitem>
  47. </varlistentry>
  48. <varlistentry><term>del <replaceable>keyid</replaceable></term>
  49. <listitem>
  50. <para>
  51. Remove a key from the list of trusted keys.
  52. </para>
  53. </listitem>
  54. </varlistentry>
  55. <varlistentry><term>export <replaceable>keyid</replaceable></term>
  56. <listitem>
  57. <para>
  58. Output the key <replaceable>keyid</replaceable> to standard output.
  59. </para>
  60. </listitem>
  61. </varlistentry>
  62. <varlistentry><term>exportall</term>
  63. <listitem>
  64. <para>
  65. Output all trusted keys to standard output.
  66. </para>
  67. </listitem>
  68. </varlistentry>
  69. <varlistentry><term>list</term>
  70. <listitem>
  71. <para>
  72. List trusted keys.
  73. </para>
  74. </listitem>
  75. </varlistentry>
  76. <varlistentry><term>finger</term>
  77. <listitem>
  78. <para>
  79. List fingerprints of trusted keys.
  80. </para>
  81. </listitem>
  82. </varlistentry>
  83. <varlistentry><term>adv</term>
  84. <listitem>
  85. <para>
  86. Pass advanced options to gpg. With adv --recv-key you can download the
  87. public key.
  88. </para>
  89. </listitem>
  90. </varlistentry>
  91. <varlistentry><term>update</term>
  92. <listitem>
  93. <para>
  94. Update the local keyring with the keyring of Debian archive
  95. keys and removes from the keyring the archive keys which are no
  96. longer valid.
  97. </para>
  98. </listitem>
  99. </varlistentry>
  100. <varlistentry><term>net-update</term>
  101. <listitem>
  102. <para>
  103. Update the local keyring with the keys of a key server
  104. and removes from the keyring the archive keys which are no
  105. longer valid. This requires an installed wget and an APT
  106. build configured to have a server to fetch from. APT in
  107. Debian does not support this command, but Ubuntu's APT
  108. does.
  109. </para>
  110. </listitem>
  111. </varlistentry>
  112. </variablelist>
  113. </refsect1>
  114. <refsect1><title>Options</title>
  115. <para>Note that options need to be defined before the commands described in the previous section.</para>
  116. <variablelist>
  117. <varlistentry><term>--keyring <replaceable>filename</replaceable></term>
  118. <listitem><para>With this option it is possible to specify a specific keyring
  119. file the command should operate on. The default is that a command is executed
  120. on the <filename>trusted.gpg</filename> file as well as on all parts in the
  121. <filename>trusted.gpg.d</filename> directory, through <filename>trusted.gpg</filename>
  122. is the primary keyring which means that e.g. new keys are added to this one.
  123. </para></listitem>
  124. </varlistentry>
  125. </variablelist>
  126. </refsect1>
  127. <refsect1><title>Files</title>
  128. <variablelist>
  129. &file-trustedgpg;
  130. <varlistentry><term><filename>/etc/apt/trustdb.gpg</filename></term>
  131. <listitem><para>Local trust database of archive keys.</para></listitem>
  132. </varlistentry>
  133. <varlistentry><term><filename>/usr/share/keyrings/debian-archive-keyring.gpg</filename></term>
  134. <listitem><para>Keyring of Debian archive trusted keys.</para></listitem>
  135. </varlistentry>
  136. <varlistentry><term><filename>/usr/share/keyrings/debian-archive-removed-keys.gpg</filename></term>
  137. <listitem><para>Keyring of Debian archive removed trusted keys.</para></listitem>
  138. </varlistentry>
  139. </variablelist>
  140. </refsect1>
  141. <refsect1><title>See Also</title>
  142. <para>
  143. &apt-get;, &apt-secure;
  144. </para>
  145. </refsect1>
  146. &manbugs;
  147. &manauthor;
  148. </refentry>