apt-key

List trusted keys

$ apt-key list

$ apt-key add [public_key_file.asc]

$ apt-key del [key_id]

$ wget -qO - [https://host.tld/filename.key] | apt-key add -

$ apt-key adv --keyserver pgp.mit.edu --recv [KEYID]

apt-key [command] [arguments]

apt-key is a key management utility for the APT Package Manager on Debian and Ubuntu. It manages the list of keys used by apt to authenticate packages.
Note: apt-key is now deprecated. Keys should be stored in /etc/apt/trusted.gpg.d/ or /usr/share/keyrings/ and referenced via signed-by in sources.list.

list

List all trusted keys with fingerprints

Add a new key to the list of trusted keys

Remove a key from the list of trusted keys

Pass advanced options to gpg

Update the local keyring with the archive keyring

Update the local keyring, fetching missing keys from a keyserver

Output the key to standard output

Output all trusted keys to standard output

List fingerprints of trusted keys

/etc/apt/trusted.gpg.d/

Directory for trusted keyring files in GPG format.

System-wide keyrings referenced via signed-by in sources.list.

Deprecated in favor of placing keyring files directly in /etc/apt/trusted.gpg.d/ or using signed-by in apt sources. Only apt-key del should be used in maintainer scripts.

Part of the APT (Advanced Package Tool) suite. Deprecated starting with Debian 11 and Ubuntu 22.04 in favor of trusted.gpg.d directory.

apt(8), apt-get(8), gpg(1)