apptainer verify

Verify cryptographic signatures attached to an image

Synopsis

The verify command allows a user to verify cryptographic signatures on SIF container files. There may be multiple signatures for data objects and multiple data objects signed. By default the command searches for the primary partition signature. If found, a list of all verification blocks applied on the primary partition is gathered so that data integrity (hashing) and signature verification is done for all those blocks.

apptainer verify [verify options...] <image path>

Examples

$ apptainer verify container.sif

Options

-a, --all               verify all objects
-g, --group-id uint32   verify objects with the specified group ID
-h, --help              help for verify
-j, --json              output json
    --legacy-insecure   enable verification of (insecure) legacy signatures
-l, --local             only verify with local key(s) in keyring
-i, --sif-id uint32     verify object with the specified ID
-u, --url string        specify a URL for a key server

SEE ALSO

• apptainer -

Linux container platform optimized for High Performance Computing (HPC) and Enterprise Performance Computing (EPC)

Auto generated by spf13/cobra on 7-Jun-2023