Metasploit-framework: GPG error when updating, key expired

Created on 19 Sep 2016 · 15Comments · Source: rapid7/metasploit-framework

Steps to reproduce

sudo apt-get update

Expected behavior

Metasploit updates.

Current behavior

Err:13 http://downloads.metasploit.com/data/releases/metasploit-framework/apt lucid InRelease
  The following signatures were invalid: KEYEXPIRED 1474234115  KEYEXPIRED 1474234115  KEYEXPIRED 1474234115
Fetched 98.2 kB in 0s (150 kB/s)
Reading package lists... Done
W: An error occurred during the signature verification. The repository is not updated and the previous index files will be used. GPG error: http://downloads.metasploit.com/data/releases/metasploit-framework/apt lucid InRelease: The following signatures were invalid: KEYEXPIRED 1474234115  KEYEXPIRED 1474234115  KEYEXPIRED 1474234115

System stuff

$ lsb_release -a
No LSB modules are available.
Distributor ID: Ubuntu
Description:    Ubuntu 16.04.1 LTS
Release:    16.04
Codename:   xenial

$ uname -a
Linux me 4.4.0-36-generic #55-Ubuntu SMP Thu Aug 11 18:01:55 UTC 2016 x86_64 x86_64 x86_64 GNU/Linux

Metasploit version

msf > version
Framework: 4.12.26-dev-030e09c9c68b055309e170ec9551c4ee476ca221
Console  : 4.12.26-dev-030e09c9c68b055309e170ec9551c4ee476ca221

Other information:

$ cat /etc/apt/sources.list.d/metasploit-framework.list
deb http://downloads.metasploit.com/data/releases/metasploit-framework/apt lucid main

Source

pr0letariat

Most helpful comment

@pr0letariat please try following commands:

$ sudo echo 'deb http://apt.metasploit.com/ lucid main' > /etc/apt/sources.list.d/metasploit-framework.list
$ sudo wget -O - http://apt.metasploit.com/metasploit-framework.gpg.key | apt-key add -
$ sudo apt-get update
$ sudo apt-get -y install metasploit-framework

nixawk on 19 Sep 2016

👍21 ❤2 😄1

All 15 comments

@pr0letariat please try following commands:

$ sudo echo 'deb http://apt.metasploit.com/ lucid main' > /etc/apt/sources.list.d/metasploit-framework.list
$ sudo wget -O - http://apt.metasploit.com/metasploit-framework.gpg.key | apt-key add -
$ sudo apt-get update
$ sudo apt-get -y install metasploit-framework

nixawk on 19 Sep 2016

👍21 ❤2 😄1

@nixawk That worked, thanks.

pr0letariat on 19 Sep 2016

👍1

@nixawk: I think you meant to use sudo tee, since sudo echo > doesn't elevate the redirection.

wvu-r7 on 20 Sep 2016

😄2 👍1

And I believe the second step needs the sudo moved from the wget over "after the pipe" (preceding the apt-key command), like such:

wget -O - http://apt.metasploit.com/metasploit-framework.gpg.key | sudo apt-key add -

pbarry-r7 on 20 Sep 2016

👍9

And thanks for hopping in on this one, @nixawk!!

pbarry-r7 on 20 Sep 2016

Hey, looks like this issue is back. After sudo apt update:
Err:1 http://apt.metasploit.com lucid InRelease The following signatures were invalid: EXPKEYSIG CDFB5FA52007B954 Metasploit <[email protected]>
The previous solutions aren't working.

78bash on 2 Sep 2019

👍4

@78bash The APT-Key of msf expired. Use --allow-unauthenticated transitionally or add [trusted=yes] to your sources.list on the msf-repository

Frisch12 on 2 Sep 2019

👍2

Yep, key has expired again:

pub rsa4096 2012-12-06 [SC] [expired: 2019-09-02] 09E55FAF4F7862CD6D558997CDFB5FA52007B954 uid Metasploit <[email protected]> sub rsa4096 2012-12-06 [E] [expired: 2019-09-02]

Matir on 2 Sep 2019

Hi, yes, key has expired again:

pub rsa4096 2012-12-06 [SC] [expired: 2019-09-02]
09E5 5FAF 4F78 62CD 6D55 8997 CDFB 5FA5 2007 B954
uid [ expired] Metasploit metasploit@rapid7.com

msf5 > version
Framework: 5.0.43-dev
Console : 5.0.43-dev

$ lsb_release -a
No LSB modules are available.
Distributor ID: Kali
Description: Kali GNU/Linux Rolling
Release: 2019.3
Codename: kali-rolling

MCStreet on 3 Sep 2019

This is the solution :

apt-key adv --keyserver keys.gnupg.net --recv-keys CDFB5FA52007B954

Good Game !! ;)

McTemplar on 3 Sep 2019

👍3

apt-key adv --keyserver keys.gnupg.net --recv-keys CDFB5FA52007B954

I got this error:
~$ sudo apt-key adv --keyserver keys.gnupg.net --recv-keys CDFB5FA52007B954 Executing: /tmp/apt-key-gpghome.dQG4XRBlRw/gpg.1.sh --keyserver keys.gnupg.net --recv-keys CDFB5FA52007B954 gpg: keyserver receive failed: Server indicated a failure

itsecurityco on 4 Sep 2019

keyserver receive failed: Server indicated a failure

Solved adding _hkp_ to keyserver
sudo apt-key adv --keyserver hkp://keys.gnupg.net --recv-keys CDFB5FA52007B954

itsecurityco on 4 Sep 2019

👍5

keyserver receive failed: Server indicated a failure

Solved adding _hkp_ to keyserver
sudo apt-key adv --keyserver hkp://keys.gnupg.net --recv-keys CDFB5FA52007B954

Worked here!

CitizenFour90 on 9 Sep 2019

This is the solution :

apt-key adv --keyserver keys.gnupg.net --recv-keys CDFB5FA52007B954

Good Game !! ;)

this worked for me too

bi0sec on 11 Sep 2019

My goodness that site https://www.fosslinux.com/19213/how-to-install-metasploit-on-ubuntu.htm was the only one to provide the solution ,so many bla bla bla talks all over the Net no solutions.