Hey.
I have logged into my debian box after few months and discovered I cannot apt-get update, getting info about expired keys:
Code: Select all
Get:1 http://security.debian.org/debian-security buster/updates InRelease [65.4 kB]
Get:2 http://deb.debian.org/debian buster InRelease [121 kB]
Err:1 http://security.debian.org/debian-security buster/updates InRelease
The following signatures were invalid: EXPKEYSIG XXXXXXXXXXXXXXXX Debian Security Archive Automatic Signing Key (9/stretch) <ftpmaster@debian.org> EXPKEYSIG XXXXXXXXXXXXXXXX Debian Security Archive Automatic Signing Key (10/buster) <ftpmaster@debian.org>
Get:3 http://deb.debian.org/debian buster-updates InRelease [51.9 kB]
Err:2 http://deb.debian.org/debian buster InRelease
The following signatures were invalid: EXPKEYSIG...
Code: Select all
apt-key adv --keyserver keys.gnupg.net --recv-keys <key>
Code: Select all
gpg: key XXXXXXXXXXXXXXXX: "Debian Security Archive Automatic Signing Key (10/buster) <ftpmaster@debian.org>" not changed
gpg: Total number processed: 1
gpg: unchanged: 1
What is strange, expired keys have future expiration date - some in 2022, some in 2027 etc...
I am stuck, don't know what to do next, appreciate any suggestions.
Michael