regctl

Manage container registry images and tags

TLDR

List tags for an image

$ regctl tag ls [registry/image]

Inspect an image without pulling

$ regctl image inspect [registry/image:tag]

Copy an image between registries

$ regctl image copy [source/image:tag] [dest/image:tag]

Get image digest

$ regctl image digest [registry/image:tag]

Delete a tag from registry

$ regctl tag rm [registry/image:tag]

Export an image to OCI layout

$ regctl image export [registry/image:tag] [output.tar]

List repositories in a registry

$ regctl repo ls [registry]

Check Docker Hub rate limits

$ regctl registry ratelimit docker.io

SYNOPSIS

regctl command [subcommand] [options] [arguments]

regctl is a CLI tool for interacting with OCI-compliant container registries without requiring a container runtime or privileged access. It provides efficient image operations by working directly with registry APIs.
The tool excels at copying images between registries, transferring only layers that don't exist at the destination. This makes it efficient for mirroring, promoting images between environments, or synchronizing across air-gapped systems.
Regctl supports multi-platform images, OCI artifacts, and can work with OCI Layout directories as local registry equivalents. It automatically imports credentials from Docker CLI configuration.
Common workflows include inspecting remote images, copying between registries, managing tags, checking rate limits, and exporting/importing images for offline transfer.

PARAMETERS

image inspect ref

Display image configuration and metadata

image copy src dest

Copy image between registries (efficient layer reuse)

image digest ref

Get image digest

image export ref file

Export image to tar file (OCI or Docker format)

image import ref file

Import image from tar file

tag ls repository

List tags in a repository

tag rm ref

Delete a tag from registry

repo ls registry

List repositories in a registry

manifest get ref

Get raw manifest content

manifest put ref

Upload manifest to registry

blob get ref

Download blob content

registry login registry

Authenticate with a registry

--platform os/arch

Filter by platform (linux/amd64, linux/arm64)

--format template

Output format (Go template)

-v, --verbosity level

Set logging verbosity

CONFIGURATION

~/.regctl/config.json

Main configuration file storing registry credentials, default settings, and registry-specific options.

~/.docker/config.json

Docker CLI credential store, automatically imported by regctl for registry authentication.

CAVEATS

Delete operations require registries to support the delete API, which some (like Docker Hub for free accounts) may restrict.
Authentication is inherited from Docker CLI config by default. Use regctl registry login for separate credential management.
Multi-platform images require --platform to select a specific architecture when operations cannot handle manifests lists (like some exports).
Rate limits apply to Docker Hub and other registries. Use regctl registry ratelimit to check current status before bulk operations.