NO_PUBKEY 964B5E720AA4F31A

[sysadmin-info]

adrian@nexus:~$ sudo apt update Hit:1 http://ftp.agh.edu.pl/debian bookworm InRelease Hit:2 http://ftp.agh.edu.pl/debian bookworm-updates InRelease
Hit:3 http://security.debian.org/debian-security bookworm-security InRelease
Get:4 https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease [1,387 B] Err:4 https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 964B5E720AA4F31A Reading package lists... Done W: GPG error: https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 964B5E720AA4F31A E: The repository 'https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease' is not signed. N: Updating from such a repository can't be done securely, and is therefore disabled by default. N: See apt-secure(8) manpage for repository creation and user configuration details. adrian@nexus:~$ sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys 964B5E720AA4F31A
Warning: apt-key is deprecated. Manage keyring files in trusted.gpg.d instead (see apt-key(8)). Executing: /tmp/apt-key-gpghome.jzrBLplFLG/gpg.1.sh --keyserver keyserver.ubuntu.com --recv-keys 964B5E720AA4F31A gpg: key 964B5E720AA4F31A: "Sonatype Community community-group@sonatype.com" not changed gpg: Total number processed: 1 gpg: unchanged: 1 adrian@nexus:~$ sudo apt update Hit:1 http://ftp.agh.edu.pl/debian bookworm InRelease Get:2 http://ftp.agh.edu.pl/debian bookworm-updates InRelease [55.4 kB]
Hit:3 http://security.debian.org/debian-security bookworm-security InRelease
Get:4 https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease [1,387 B]
Err:4 https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 964B5E720AA4F31A Reading package lists... Done W: GPG error: https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 964B5E720AA4F31A E: The repository 'https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease' is not signed. N: Updating from such a repository can't be done securely, and is therefore disabled by default. N: See apt-secure(8) manpage for repository creation and user configuration details.

[martinresch]

same here:

martin@v-ubuntu-server-2204:~$ sudo wget -P /etc/apt/sources.list.d/ https://repo.sonatype.com/repository/community-hosted/deb/sonatype-community.list
--2024-07-11 21:19:03--  https://repo.sonatype.com/repository/community-hosted/deb/sonatype-community.list
Resolving repo.sonatype.com (repo.sonatype.com)... 54.193.53.206, 54.177.187.121
Connecting to repo.sonatype.com (repo.sonatype.com)|54.193.53.206|:443... connected.
HTTP request sent, awaiting response... 200 OK
Length: 162 [text/plain]
Saving to: ‘/etc/apt/sources.list.d/sonatype-community.list’

sonatype-community.list               100%[========================================================================>]     162  --.-KB/s    in 0s      

2024-07-11 21:19:03 (139 MB/s) - ‘/etc/apt/sources.list.d/sonatype-community.list’ saved [162/162]

martin@v-ubuntu-server-2204:~$ wget -q -O - https://repo.sonatype.com/repository/community-hosted/pki/deb-gpg/DEB-GPG-KEY-Sonatype.asc | sudo apt-key add -
Warning: apt-key is deprecated. Manage keyring files in trusted.gpg.d instead (see apt-key(8)).
OK
martin@v-ubuntu-server-2204:~$ sudo apt-get update && sudo apt-get install nexus-repository-manager         
OK:1 http://security.ubuntu.com/ubuntu jammy-security InRelease
OK:2 http://de.archive.ubuntu.com/ubuntu jammy InRelease                     
OK:3 http://de.archive.ubuntu.com/ubuntu jammy-updates InRelease             
OK:4 http://de.archive.ubuntu.com/ubuntu jammy-backports InRelease           
Holen:5 https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease [1.387 B]
Fehl:5 https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease
  Die folgenden Signaturen konnten nicht überprüft werden, weil ihr öffentlicher Schlüssel nicht verfügbar ist: NO_PUBKEY 964B5E720AA4F31A
Paketlisten werden gelesen… Fertig
W: GPG-Fehler: https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease: Die folgenden Signaturen konnten nicht überprüft werden, weil ihr öffentlicher Schlüssel nicht verfügbar ist: NO_PUBKEY 964B5E720AA4F31A
E: Das Depot »https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease« ist nicht signiert.
N: Eine Aktualisierung von solch einem Depot kann nicht auf eine sichere Art durchgeführt werden, daher ist es standardmäßig deaktiviert.
N: Weitere Details zur Erzeugung von Paketdepots sowie zu deren Benutzerkonfiguration finden Sie in der Handbuchseite apt-secure(8).

[chaohui2]

same

ubuntu@repository:~$ sudo apt-get update && sudo apt-get install nexus-repository-manager
Hit:1 https://mirrors.tuna.tsinghua.edu.cn/ubuntu jammy InRelease
Hit:2 https://mirrors.tuna.tsinghua.edu.cn/ubuntu jammy-updates InRelease
Hit:3 https://mirrors.tuna.tsinghua.edu.cn/ubuntu jammy-backports InRelease
Hit:4 https://mirrors.tuna.tsinghua.edu.cn/ubuntu jammy-security InRelease
Get:5 https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease [1,387 B]
Err:5 https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease
  The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 964B5E720AA4F31A
Reading package lists... Done
W: GPG error: https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 964B5E720AA4F31A
E: The repository 'https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease' is not signed.
N: Updating from such a repository can't be done securely, and is therefore disabled by default.
N: See apt-secure(8) manpage for repository creation and user configuration details.

[pkr1771]

I modified the /etc/apt/sources.list.d/sonatype-community.list file and changed first line to include [arch=all trusted=yes]. Then apt update worked albeit with a warning.

Worth noting when upgrading that 3.70.X is not provided in the repo and will attempt to update from 3.69.X direct to 3.71.X which will not work.

[Zyzonix]

Issue still present to me, any news on this? Installation says: Get:4 https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease [1,387 B] Err:4 https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 964B5E720AA4F31A Reading package lists... Done W: GPG error: https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 964B5E720AA4F31A E: The repository 'https://repo.sonatype.com/repository/community-apt-hosted bionic InRelease' is not signed.