.TH "rkt - App Container runtime" "1" "Dec 2019" "Auto generated by spf13/cobra" "" 
.nh
.ad l


.SH NAME
.PP
rkt\-trust \- Trust a key for image verification


.SH SYNOPSIS
.PP
\fBrkt trust [\-\-prefix=PREFIX] [\-\-insecure\-allow\-http] [\-\-skip\-fingerprint\-review] [\-\-root] [PUBKEY ...] [flags]\fP


.SH DESCRIPTION
.PP
Adds keys to the local keystore for use in verifying signed images.

.PP
PUBKEY may be either a local file or URL.

.PP
PREFIX scopes the applicability of PUBKEY to image names sharing PREFIX.

.PP
Meta discovery of PUBKEY at PREFIX will be attempted if no PUBKEY is specified.

.PP
To trust a key for all images instead of for specific images, \-\-root can be
specified. Path to a key file must be given (no discovery).


.SH OPTIONS
.PP
\fB\-h\fP, \fB\-\-help\fP[=false]
    help for trust

.PP
\fB\-\-insecure\-allow\-http\fP[=false]
    allow HTTP use for key discovery and/or retrieval

.PP
\fB\-\-prefix\fP=""
    prefix to limit trust to

.PP
\fB\-\-root\fP[=false]
    add root key from filesystem without a prefix

.PP
\fB\-\-skip\-fingerprint\-review\fP[=false]
    accept key without fingerprint confirmation


.SH OPTIONS INHERITED FROM PARENT COMMANDS
.PP
\fB\-\-debug\fP[=false]
    print out more debug information to stderr

.PP
\fB\-\-dir\fP=/var/lib/rkt
    rkt data directory

.PP
\fB\-\-insecure\-options\fP=none
    comma\-separated list of security features to disable. Allowed values: "none", "image", "tls", "ondisk", "http", "pubkey", "capabilities", "paths", "seccomp", "all\-fetch", "all\-run", "all"

.PP
\fB\-\-local\-config\fP=/etc/rkt
    local configuration directory

.PP
\fB\-\-system\-config\fP=/usr/lib/rkt
    system configuration directory

.PP
\fB\-\-trust\-keys\-from\-https\fP[=false]
    automatically trust gpg keys fetched from https

.PP
\fB\-\-user\-config\fP=
    user configuration directory


.SH SEE ALSO
.PP
\fBrkt(1)\fP


.SH HISTORY
.PP
20\-Dec\-2019 Auto generated by spf13/cobra