While updating my packages on a debian based system by a
sudo apt-get update
I've got that error message :
Reading package lists... Done
W: GPG error: ftp://ftp.fr.debian.org stable/non-US Release:
The following signatures were invalid: KEYEXPIRED 1138684904
What should I do to fix this ?
Best Answer
To find any expired repository keys and their IDs, use
apt-key
as follows:You will get a result similar to the following:
The key ID is the bit after the
/
i.e.BE1DB1F1
in this case.To update the key, run
Note: Updating the key will obviously not work if the package maintainer has not (yet) uploaded a new key. In that case there is little you can do other than contacting the maintainer, filing a bug against your distribution etc.
One liner to update all expired keys: (thanks to @ryanpcmcquen)