singularity-verify - Verify digital signature(s) within an image
NAME SYNOPSIS DESCRIPTION OPTIONS EXAMPLE SEE ALSO HISTORYNAME
singularity-verify - Verify digital signature(s) within an image
SYNOPSIS
singularity verify [verify options...]
DESCRIPTION
The verify
command allows a user to verify one or more digital
signatures
within a SIF image.
Key material can
be provided via PEM-encoded file, or via the PGP keyring. To
manage the PGP keyring, see ’singularity help
key’.
--cosign mode
supports verifying an OCI image within an OCI-SIF file that
has
a cosign-compatible signature. A public key must be provided
with the --key
flag.
OPTIONS
|
-a, --all[=false] |
verify all objects | ||
|
--certificate="" |
path to the certificate | ||
|
--certificate-intermediates="" |
path to pool of intermediate certificates | ||
|
--certificate-roots="" |
path to pool of root certificates | ||
|
-c, --cosign[=false] |
verify an OCI-SIF with a cosign-compatible sigstore signature | ||
|
-g, --group-id=0 |
verify objects with the specified group ID | ||
|
-h, --help[=false] |
help for verify | ||
|
-j, --json[=false] |
output json | ||
|
--key="" |
path to the public key file | ||
|
--legacy-insecure[=false] |
enable verification of (insecure) legacy signatures | ||
|
-l, --local[=false] |
only verify with local key(s) in keyring | ||
|
--ocsp-verify[=false] |
enable online revocation check for certificates | ||
|
-i, --sif-id=0 |
verify object with the specified ID | ||
|
-u, --url="" |
specify a URL for a key server |
EXAMPLE
Verify with a
public key:
$ singularity verify --key public.pem container.sif
Verify with PGP:
$ singularity verify container.sif
Verify an image
within an OCI-SIF with a cosign compatible signature:
$ singularity verify --cosign --key cosign.pub
container.oci.sif
SEE ALSO
singularity(1)
HISTORY
15-May-2026 Auto generated by spf13/cobra