sq-sign - Man Page
Sign messages or data files
Synopsis
sq sign [Options] FILE
Description
Sign messages or data files.
Creates signed messages or detached signatures. Detached signatures are often used to sign software packages.
The converse operation is `sq verify`.
`sq sign` respects the reference time set by the top-level `--time` argument. When set, it uses the specified time instead of the current time, when determining what keys are valid, and it sets the signature's creation time to the reference time instead of the current time.
Options
Subcommand options
- --append
Append a signature to existing signature
- --binary
Emit binary data
- --cleartext-signature
Create a cleartext signature
- --detached
Create a detached signature
- --merge=SIGNED-MESSAGE
Merge signatures from the input and SIGNED-MESSAGE
- --notarize
Sign a message and all existing signatures
- --notation NAME VALUE
Add a notation to the certification. A user-defined notation's name must be of the form `name@a.domain.you.control.org`. If the notation's name starts with a `!`, then the notation is marked as being critical. If a consumer of a signature doesn't understand a critical notation, then it will ignore the signature. The notation is marked as being human readable.
- --output=FILE
Write to FILE or stdout if omitted
[default: -]
- --signer-file=KEY_FILE
Sign the message using the key in KEY_FILE
- --signer-key=KEYID|FINGERPRINT
Sign the message using the specified key on the key store
- FILE
Read from FILE or stdin if FILE is '-'
[default: -]
Global options
See sq(1) for a description of the global options.
Examples
Create a signed message.
sq sign --signer-file juliet-secret.pgp document.txt
Create a detached signature.
sq sign --signer-file juliet-secret.pgp --detached \
document.txtCreate a signature with the specified creation time.
sq sign --signer-file juliet-secret.pgp --time 2024-02-29 \
--detached document.txtSee Also
For the full documentation see <https://book.sequoia-pgp.org>.
Version
0.38.0 (sequoia-openpgp 1.21.2)