.nh .TH skopeo-standalone-verify(1) .SH NAME .PP skopeo-standalone-verify - Verify an image signature. .SH SYNOPSIS .PP \fBskopeo standalone-verify\fP \fImanifest\fP \fIdocker-reference\fP \fIkey-fingerprints\fP \fIsignature\fP .SH DESCRIPTION .PP Verify a signature using local files; the digest will be printed on success. This is primarily a debugging tool, useful for special cases, and usually should not be a part of your normal operational workflow. Additionally, consider configuring a signature verification policy file, as per containers-policy.json(5). .PP \fImanifest\fP Path to a file containing the image manifest .PP \fIdocker-reference\fP A docker reference expected to identify the image in the signature .PP \fIkey-fingerprints\fP Identities of trusted signing keys (comma separated), or "any" to trust any known key when using a public key file .PP \fIsignature\fP Path to signature file .PP \fBNote:\fP If you do use this, make sure that the image can not be changed at the source location between the times of its verification and use. .SH OPTIONS .PP See also skopeo(1) for options placed before the subcommand name. .PP \fB--help\fP, \fB-h\fP .PP Print usage statement .PP \fB--public-key-file\fP \fIpublic key file\fP .PP File containing the public keys to use when verifying signatures. If this is not specified, keys from the GPG homedir are used. .SH EXAMPLES .EX $ skopeo standalone-verify busybox-manifest.json registry.example.com/example/busybox 1D8230F6CDB6A06716E414C1DB72F2188BB46CC8 busybox.signature Signature verified, digest sha256:20bf21ed457b390829cdbeec8795a7bea1626991fda603e0d01b4e7f60427e55 .EE .SH NOTES .PP This command is intended for use with local signatures e.g. OpenPGP ( other signature formats may be added in the future ), as per containers-signature(5). Furthermore, this command does \fBnot\fP interact with the artifacts generated by Docker Content Trust (DCT). For more information, please see containers-signature(5) \[la]https://github.com/containers/image/blob/main/docs/containers\-signature.5.md\[ra]\&. .SH SEE ALSO .PP skopeo(1), containers-signature(5), containers-policy.json(5) .SH AUTHORS .PP Antonio Murdaca runcom@redhat.com \[la]mailto:runcom@redhat.com\[ra], Miloslav Trmac mitr@redhat.com \[la]mailto:mitr@redhat.com\[ra], Jhon Honce jhonce@redhat.com \[la]mailto:jhonce@redhat.com\[ra]