We are using the Sonatype Nexus Repository Manager
to host apt
repositories. The GPG
key of one of them has expired recently and needed to be updated. What I thought would be sufficient was to generate new key pairs (as described in the official site docs), paste the new private key through the Nexus UI and new passphrase then apt-key add
new public key on client system and all would be good to go. What happens instead is that apt update
still says NO_PUBKEY <old_id>
. I have no idea whatsoever where does the apt
takes the information from now, that it misses the old key and does not "synchronize" the new key. I have also tried to delete contents of /var/lib/apt/lists/
directory before calling the apt update
. What am I missing?
EDIT:
All is run in clean docker, where only new key is added apt-key add public.gpg.key
and new repository to /etc/apt/sources.list
, echo "deb <repo_url> bionic main" >> /etc/apt/sources.list