sq-sign - Man Page
Sign messages or data files
Synopsis
sq sign [Options] FILE
Description
Sign messages or data files.
Creates signed messages or detached signatures. Detached signatures are often used to sign software packages.
The converse operation is `sq verify`.
`sq sign` respects the reference time set by the top-level `--time` argument. When set, it uses the specified time instead of the current time, when determining what keys are valid, and it sets the signature's creation time to the reference time instead of the current time.
Options
Subcommand options
- --append
Append a signature to existing signature
- --binary
Emit binary data
- --cleartext-signature
Create a cleartext signature
- --detached
Create a detached signature
- --merge=SIGNED-MESSAGE
Merge signatures from the input and SIGNED-MESSAGE
- --notarize
Sign a message and all existing signatures
- --notation NAME VALUE
Add a notation to the certification. A user-defined notation's name must be of the form `name@a.domain.you.control.org`. If the notation's name starts with a `!`, then the notation is marked as being critical. If a consumer of a signature doesn't understand a critical notation, then it will ignore the signature. The notation is marked as being human readable.
- --output=FILE
Write to FILE or stdout if omitted
[default: -]
- --signer=KEYID|FINGERPRINT
Sign the message using the specified key on the key store
- --signer-file=KEY_FILE
Sign the message using the key in KEY_FILE
- FILE
Read from FILE or stdin if FILE is '-'
[default: -]
Global options
See sq(1) for a description of the global options.
Examples
Create a signed message.
sq sign --signer-file juliet-secret.pgp document.txt
Create a detached signature.
sq sign --signer-file juliet-secret.pgp --detached \ document.txt
Create a signature with the specified creation time.
sq sign --signer-file juliet-secret.pgp --time 2024-02-29 \ --detached document.txt
See Also
For the full documentation see <https://book.sequoia-pgp.org>.
Version
0.39.0 (sequoia-openpgp 1.21.2)