1skopeo-standalone-verify(1)() skopeo-standalone-verify(1)()
2
3
4
6 skopeo-standalone-verify - Verify an image signature.
7
8
10 skopeo standalone-verify manifest docker-reference key-fingerprint sig‐
11 nature
12
13
15 Verify a signature using local files, digest will be printed on suc‐
16 cess.
17
18
19 manifest Path to a file containing the image manifest
20
21
22 docker-reference A docker reference expected to identify the image in
23 the signature
24
25
26 key-fingerprint Expected identity of the signing key
27
28
29 signature Path to signature file
30
31
32 Note: If you do use this, make sure that the image can not be changed
33 at the source location between the times of its verification and use.
34
35
37 $ skopeo standalone-verify busybox-manifest.json registry.example.com/example/busybox 1D8230F6CDB6A06716E414C1DB72F2188BB46CC8 busybox.signature
38 Signature verified, digest sha256:20bf21ed457b390829cdbeec8795a7bea1626991fda603e0d01b4e7f60427e55
39
40
41
43 skopeo(1), containers-signature(5)
44
45
47 Antonio Murdaca runcom@redhat.com ⟨mailto:runcom@redhat.com⟩, Miloslav
48 Trmac mitr@redhat.com ⟨mailto:mitr@redhat.com⟩, Jhon Honce jhonce@red‐
49 hat.com ⟨mailto:jhonce@redhat.com⟩
50
51
52
53 skopeo-standalone-verify(1)()