<h1 id="migrating-from-apt-key-to-signed-by">Migrating from apt-key to signed-by<a aria-hidden="true" class="anchor-heading icon-link" href="#migrating-from-apt-key-to-signed-by"></a></h1>
Identify the UID of the key in:
<pre class="language-console"><code class="language-console">apt-key list
</code></pre>
Strip spaces from the key UID:
<pre class="language-console"><code class="language-console">echo 'A758 B3FB CD43 BE8D 123A 3476 BB29 EE03 8ECC E87C' | tr -d ' '
</code></pre>
Extract the key into its own keyring file, conventionally named after the relevant sources file in <code>sources.list.d</code>:
<pre class="language-console"><code class="language-console">apt-key export 'A758B3FBCD43BE8D123A3476BB29EE038ECCE87C' | sudo gpg --dearmor -o /etc/apt/keyrings/newrelic-infra.gpg
</code></pre>
Edit the sources file (e.g. <code>/etc/apt/sources.list.d/newrelic-infra.list</code>) to use the new keyring:
<pre class="language-diff"><code class="language-diff">-deb [arch=amd64] https://download.newrelic.com/infrastructure_agent/linux/apt bookworm main
+deb [arch=amd64 signed-by=/etc/apt/keyrings/newrelic-infra.gpg] https://download.newrelic.com/infrastructure_agent/linux/apt bookworm main
</code></pre>
Finally, remove the old key:
<pre class="language-console"><code class="language-console">sudo apt-key del A758B3FBCD43BE8D123A3476BB29EE038ECCE87C
</code></pre>

Migrating from apt-key to signed-by


![Digital brain](assets/images/logo.svg){display: block, margin: 0 auto, max-height: 50vh}

Hi, I'm Luke 👋

I'm a software engineer turned site reliability engineer. I'm currently big on knowledge management and learning.

# Find me elsewhere

- [👨‍💻 DEV](https://dev.to/lukecarrier)
- [🚢 GitHub](https://github.com/LukeCarrier)
- [👔 LinkedIn](https://www.linkedin.com/in/lukecarrier/)
- [📄 Résumé](https://github.com/LukeCarrier/resume)
